First page Back Continue Last page Overview Graphics
Kerberos: summary
Authentication method:
- User’s enter password on local machine only
- Authenticated via central KDC once per day
- No passwords travel over the network
Single Sign-on (via TGS):
- KDC gives you a special “ticket”, the TGT, usually good for rest of the day
- TGT can be used to get other service tickets allowing user to access them (when presented along with authenticators)