Difference between revisions of "Kerberos"

Revision as of 10:04, 13 July 2020

Kerberos is a computer-network authentication protocol that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner.

At least two implementations are available, [Heimdal]( https://www.h5l.org/) and [MIT](https://web.mit.edu/kerberos/).

OpenSSH implements Kerberos support [OpenSSH release notes|since early versions]].

Binaries: ktutil, klist, kinit

A Kerberos realm is the domain over which a Kerberos authentication server has the authority to authenticate a user, host or service. A realm name is often, but not always the upper case version of the name of the DNS domain over which it presides.

Configuration files

/etc/krb5.conf^[1]

Activities

Install Kerberos KDC Server and Client in Linux: apt install krb5-kdc krb5-admin-server krb5-config -y^[2]
Understand why time synchronization and DNS plays an important role in order to work KDC properly^[3]
Read about SPNEGO

Related terms

FreeIPA

@@ Line 3: / Line 3: @@
 At least two implementations are available,  [Heimdal]( https://www.h5l.org/) and [MIT](https://web.mit.edu/kerberos/).
-[[OpenSSH]] implements Kerberos support [[OpenSSH/OpenSSH versions Release Notes|since early versions]].
+[[OpenSSH]] implements Kerberos support [OpenSSH release notes|since early versions]].
 * Binaries: <code>ktutil</code>, <code>klist</code>, <code>kinit</code>

Difference between revisions of "Kerberos"

Revision as of 10:04, 13 July 2020

Contents

Configuration files

Activities

Related terms

See also

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Tools