Kerberos referrals - PowerPoint PPT Presentation

About This Presentation

Title:

Kerberos referrals

Description:

Basic referral mechanism. Motivation. Client config changes are not scalable ... Referrals and canonicalization. Client name canonicalization issues ... – PowerPoint PPT presentation

Number of Views:54

Avg rating:3.0/5.0

Slides: 7

Provided by: jkjaga

Learn more at: https://www.ietf.org

Category:

Tags: kerberos | referral | referrals

Transcript and Presenter's Notes

Title: Kerberos referrals

1
Kerberos referrals
2
Schedule

Refresh draft and publish before interim meeting
Current date - December 20(tentative)

3
Basic referral mechanism

Motivation
Client config changes are not scalable
MS deployments are heavily cross realm oriented
Mechanism
KDC issues referrals
Client chases referrals

4
AS referrals

Client uses KRB-NT-ENTERPRISE in request
Client sets canonicalize
KDC returns
KRB-NT-PRINCIPAL if name found
KDC_ERR_WRONG_REALM if referral
KDC_ERR_C_PRINCIPAL_UNKNOWN

5
TGS referrals

Client sends TGS-REQ with canonicalize
KDC returns TGS-REP
with service ticket if service found
Cross realm TGT if the service in another realm

6
Issues

Referrals and canonicalization
Client name canonicalization issues
Possible issues with name based access control
Can only get canonicalization when authenticating

Write a Comment

User Comments (0)

About PowerShow.com

Recommended Relevance Latest Highest Rated Most Viewed

Sort by:

Related More from user

CrystalGraphics Presentations

World's Best PowerPoint Templates PowerPoint PPT Presentation

World's Best PowerPoint Templates - CrystalGraphics offers more PowerPoint templates than anyone else in the world, with over 4 million to choose from. Winner of the Standing Ovation Award for “Best PowerPoint Templates” from Presentations Magazine. They'll give your presentations a professional, memorable appearance - the kind of sophisticated look that today's audiences expect. Boasting an impressive range of designs, they will support your presentations with inspiring background photos or videos that support your themes, set the right mood, enhance your credibility and inspire your audiences.

CrystalGraphics 3D Character Slides for PowerPoint PowerPoint PPT Presentation

CrystalGraphics 3D Character Slides for PowerPoint - CrystalGraphics 3D Character Slides for PowerPoint

Chart and Diagram Slides for PowerPoint PowerPoint PPT Presentation

Chart and Diagram Slides for PowerPoint - Beautifully designed chart and diagram s for PowerPoint with visually stunning graphics and animation effects. Our new CrystalGraphics Chart and Diagram Slides for PowerPoint is a collection of over 1000 impressively designed data-driven chart and editable diagram s guaranteed to impress any audience. They are all artistically enhanced with visually stunning color, shadow and lighting effects. Many of them are also animated. And they’re ready for you to use in your PowerPoint presentations the moment you need them. – PowerPoint PPT presentation

Related Presentations

PKINIT and Referrals PowerPoint PPT Presentation

PKINIT and Referrals - PKINIT and Referrals. Larry Zhu. JK Jaganathan. Microsoft Corporation. IETF 63. PKINIT Draft status ... Referrals. draft-ietf-krb-wg-kerberos-referrals-06.txt ... | PowerPoint PPT presentation | free to view

Automating Deployment Configuration of Web Services Security PowerPoint PPT Presentation

Automating Deployment Configuration of Web Services Security - DIMACS Workshop on Security of Web Services and E-Commerce. May 5-6, 2005. Rutgers University ... Logic Engines (e.g. Racer) DIMACS (Chung, Falchuk, Micallef) 8 ... | PowerPoint PPT presentation | free to view

SIP Security Status PowerPoint PPT Presentation

SIP Security Status - 2543bis leaves HTTP'isms, rest deprecated. Many BOF's, many different ... Many drafts are becoming more and more aware that there is the ... HTTP'isms for ... | PowerPoint PPT presentation | free to view

Pass4sure 70-412 Study PowerPoint PPT Presentation

Pass4sure 70-412 Study - Pass4sure is best site for your certification exam. Pass4sure provide best question answer of 70-412 with passing guarantee. http://www.pass4suredumps.in/70-412.html | PowerPoint PPT presentation | free to view

Windows 2000 PowerPoint PPT Presentation

Windows 2000 - ... upgraded from Windows 9.x. WiscWorld ... Most Windows versions can be upgraded. What's A Directory? ... Primary and backup DCs (Windows NT 4.0) go away ... | PowerPoint PPT presentation | free to view

Andrew System E-mail Architecture at Carnegie Mellon University PowerPoint PPT Presentation

Andrew System E-mail Architecture at Carnegie Mellon University - Clients and Andrew Webmail. Current Andrew Hardware ... Provide access mail over the Web. Integration of messaging into the overall Computing Experience ... | PowerPoint PPT presentation | free to view

CS 603 DCOM PowerPoint PPT Presentation

CS 603 DCOM - Or default to server specified in DCOM configuration on client machine ... DCOM. Distinction between Class and Instance Identifier. Implement multiple interfaces ... | PowerPoint PPT presentation | free to view

Naming PowerPoint PPT Presentation

Naming - Lightweight Directory Access Protocol(LDAP) Java Naming and Directory ... Directory Access Protocol(DAP) Communication between directory client and server ... | PowerPoint PPT presentation | free to view

Configuring Advanced Windows Server 2012 Services 70-412 Exam Pass with Guarantee PowerPoint PPT Presentation

Configuring Advanced Windows Server 2012 Services 70-412 Exam Pass with Guarantee - We are giving Microsoft 70-412 genuine test QUESTIONS which help you to pass your Configuring Advanced Windows Server 2012 Services test in great imprints. You can easily prepare your Microsoft 70-412 exam with our dumps that are available in both PDF and test engines. https://www.examarea.com/70-412-exams.html | PowerPoint PPT presentation | free to view

CS556: Distributed Systems PowerPoint PPT Presentation

CS556: Distributed Systems - a base DN indicates where in the hierarchy to begin the search ... on IP destination address. network ... change of IP address (conform to new subnet), or ... | PowerPoint PPT presentation | free to view

Module 3: Designing an Active Directory Site Topology PowerPoint PPT Presentation

Module 3: Designing an Active Directory Site Topology - sub.dom.com and. some components of. dom.com. Site A spans some. components of. dom.com. Some components of. OU exist in SiteA. Some components of. OU exist in Site B ... | PowerPoint PPT presentation | free to view

T-110.455 Network Application Frameworks and XML Web Service Security 06.04.2005 Sasu Tarkoma Based on slides by Pekka Nikander PowerPoint PPT Presentation

T-110.455 Network Application Frameworks and XML Web Service Security 06.04.2005 Sasu Tarkoma Based on slides by Pekka Nikander - T-110.455 Network Application Frameworks and XML Web Service Security 06.04.2005 Sasu Tarkoma Based on s by Pekka Nikander Announcements A list of papers to read ... | PowerPoint PPT presentation | free to view

Selling SCO Authentication for Microsoft Active Directory louisisco'com PowerPoint PPT Presentation

Selling SCO Authentication for Microsoft Active Directory louisisco'com - UNIX servers provide key application services. 10. Target Audience. Sample Target Markets ... Metadirectory Servers. Novell DirXML and Microsoft Metadirectory Services ... | PowerPoint PPT presentation | free to view

Andrew System Email Architecture at Carnegie Mellon University PowerPoint PPT Presentation

Andrew System Email Architecture at Carnegie Mellon University - Separation of the mail store from a distributed file system ... More CMU Mail System Goals ... Authentication of user sending intra-site email ... | PowerPoint PPT presentation | free to view

Summary of Changes - version 6 PowerPoint PPT Presentation

Summary of Changes - version 6 - added ability to control access to ACI; removed policy owner ... Search permission: revisit/update permissions b, r, s: ... Keep all and do per Chadwick's email ... | PowerPoint PPT presentation | free to view

Verzeichnisdienstanwendungen f PowerPoint PPT Presentation

Verzeichnisdienstanwendungen f - Title: Verzeichnisdienste auf Open Source Grundlage Author: zrngi01 Last modified by: zrngi01 Created Date: 10/8/2002 1:06:49 PM Document presentation format | PowerPoint PPT presentation | free to view

IAM304: Active Directory AD Design with Longhorn Server Directory Services PowerPoint PPT Presentation

IAM304: Active Directory AD Design with Longhorn Server Directory Services - Fine grained password policy. Investing in the Fundamentals. Globalization and standards ... Fine Grained Password Policy. Backup and Restore ...and many more ... | PowerPoint PPT presentation | free to view

Middleware CAMP June 2002 PowerPoint PPT Presentation

Middleware CAMP June 2002 - A practical (deployment) activity that necessitates some research and much development ... Policies and Politics. Clarify relationships between individuals and ... | PowerPoint PPT presentation | free to view

Nurse Practitioner Data Log: Student-Patient Computer Data Log Form PowerPoint PPT Presentation

Nurse Practitioner Data Log: Student-Patient Computer Data Log Form - Nurse Practitioner Data Log: Student-Patient Computer Data Log Form The University of Michigan School of Nursing Why Computer Logs? History of Logs Paper Logs Ease of ... | PowerPoint PPT presentation | free to view

Globus Toolkit PowerPoint PPT Presentation

Globus Toolkit - Globus Toolkit, FTP, SSH, Condor, SRB, MPI, ... Learn through deployment and applications ... E.g. GlobusIO, Condor-G, MPICH-G2, HDF5, etc. Developer View ... | PowerPoint PPT presentation | free to view

70284 MCSE Guide to Microsoft Exchange Server 2003 Administration PowerPoint PPT Presentation

70284 MCSE Guide to Microsoft Exchange Server 2003 Administration - Describe front-end and back-end server ... Front-end server duties accept requests from clients ... Front-end authenticates mailbox/public folder requests ... | PowerPoint PPT presentation | free to view

octubre 2002 PowerPoint PPT Presentation

octubre 2002 - octubre 2002 | PowerPoint PPT presentation | free to view

Network Management PowerPoint PPT Presentation

Network Management - all milestones in resolution of problem create a new ticket entry with reference ... Ticket information log : toppingb@facesofdeath.ns.itd.umich.edu said ... | PowerPoint PPT presentation | free to view

Sreekanth Malladi PowerPoint PPT Presentation

Sreekanth Malladi - Web Security Sreekanth Malladi Modifying s originally prepared by Vitaly Shmatikov, UT Austin | PowerPoint PPT presentation | free to view

Using LDAP in your enterprise for PHP Programmers PowerPoint PPT Presentation

Using LDAP in your enterprise for PHP Programmers - Annoy me: darcrist@gmail.com. Who is Justin Dearing. Multi Talented Programmer/Network Admin ... Annoy me: zippy1981@gmail.com. What is LDAP ... | PowerPoint PPT presentation | free to view

Distributed File Systems I PowerPoint PPT Presentation

Distributed File Systems I - The University of California created a free version of NFS in the late 1980s, ... To the user, this transaction is totally transparent. India Systems Technology Labs ... | PowerPoint PPT presentation | free to view

Introduction to Grid Computing and the Globus Toolkit PowerPoint PPT Presentation

Introduction to Grid Computing and the Globus Toolkit - Condor-G delivered 3.46E8 CPU seconds in 7 days (peak 1009 processors) in U.S. ... XML, Condor ClassAds, Globus RSL. X.509 certificate format (RFC 2459) ... | PowerPoint PPT presentation | free to view