KBTAG: kben10000105
URL: http://www.securityportal.com/lskb/10000100/kben10000105.html
Date created: 18/07/2000
Date modified:
Date removed:
Authors(s): Kurt Seifried seifried@securityportal.com
Topic: Authentication - Kerberos
Keywords: Network/Authentication,
Network/Kerberos
Kerberos is a modern network authentication system based on the idea of handing a user a ticket once they have authenticated to the Kerberos server (similar to NTs use of tokens). Kerberos is available from: http://web.mit.edu/kerberos/www/. The Kerberos FAQ is available at: http://www.nrl.navy.mil/CCS/people/kenh/kerberos-faq.html. Kerberos is appropriate for large installations as it scales better and is more secure then NIS / NIS+. Kerberizing programs such as telnet, imap and pop can be achieved with some effort, Windows clients with Kerberos support are harder to find however. Support for Kerberos is built into Windows 2000, however MS has added a proprietary extension which can cause problems.