Difference between revisions of "Kerberos"
Jump to navigation
Jump to search
↑ https://linux.die.net/man/5/krb5.conf
↑ https://linuxconfig.org/how-to-install-kerberos-kdc-server-and-client-on-ubuntu-18-04
↑ https://linuxconfig.org/how-to-install-kerberos-kdc-server-and-client-on-ubuntu-18-04
Tags: Mobile web edit, Mobile edit |
Tags: Mobile web edit, Mobile edit |
||
Line 1: | Line 1: | ||
[[wikipedia:Kerberos|Kerberos]] is a computer-network [[authentication protocol]] that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner. | [[wikipedia:Kerberos|Kerberos]] is a computer-network [[authentication protocol]] that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner. | ||
− | At least two implementations are available, [Heimdal]( https://www.h5l.org/) and [MIT](https://web.mit.edu/kerberos/) | + | At least two implementations are available, [Heimdal]( https://www.h5l.org/) and [MIT](https://web.mit.edu/kerberos/). |
+ | |||
+ | [[OpenSSH]] implements Kerberos support [[OpenSSH/OpenSSH versions Release Notes|since early versions]]. | ||
* Binaries: <code>ktutil</code>, <code>klist</code>, <code>kinit</code> | * Binaries: <code>ktutil</code>, <code>klist</code>, <code>kinit</code> |
Revision as of 03:12, 23 March 2020
Kerberos is a computer-network authentication protocol that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner.
At least two implementations are available, [Heimdal]( https://www.h5l.org/) and [MIT](https://web.mit.edu/kerberos/).
OpenSSH implements Kerberos support since early versions.
- Binaries:
ktutil
,klist
,kinit
Configuration files
/etc/krb5.conf
[1]
Activities
- Install Kerberos KDC Server and Client in Linux:
apt install krb5-kdc krb5-admin-server krb5-config -y
[2] - Understand why time synchronization and DNS plays an important role in order to work KDC properly[3]
- Read about SPNEGO
See also
- AAA, Kerberos, KDC,
kinit, klist, ktutil, /etc/krb5.conf, krb5-workstation, pam_krb5
, Krb5 - OpenSSH:
ssh-keygen
Advertising: