![]() Service Principal Name (SPN): an identifier given to a service instance to associate a service instance with a domain service account.Ticket Granting Service (TGS): when a client wants to access a service, they must present their TGT to the TGS.The AS then forwards the username to the KDC that in turn grants a TGT. Authentication Server (AS): a client authenticates themselves to the AS using a username and password login.The KDC for a domain is located on a domain controller. Its main function is to be a mediator between these two, relaying messages from the AS, grants a ticket-granting ticket (TGT), then passing that to be encrypted by the TGS. Key Distribution Centre (KDC): contains the Authentication Server (AS) and the Ticket Granting Service (TGS).Kerberos Realm: a logical network, similar to a domain, over which a Kerberos authentication server has the authority to authenticate a user, host or service. ![]() The following terminology is often used when discussing the core components of Kerberos. What are the Core Components of Kerberos?
0 Comments
Leave a Reply. |