The MIT Kerberos Administrator’s How-to Guide
In the real world, identification is something we, as human beings, do naturally: through physical appearance, voice patterns, or even scent. It is based on the assumption that those attributes are unique, and that they can be trusted. This ability provides us with the possibility to distinguish one person from another.
However, when put in a situation where we”re not able to use those attributes to identify someone, as in a phone call for example, we”re left with finding some other means to prove our identitys. We sometimes identify ourselves with what is called a “shared secret”, where one party asks the other party to prove his identity through information that is only known by both, like a password.
When we add a computer to this mechanism, with an identification that needs to be provided over a network, things are going a little more complex. Sending this “shared secret”, or password, over an unsecured network can be compared to shouting your password in a crowded room.
Many authentication mechanisms were developped during the last decade to solve those problems; Kerberos is one of them. Often seen as an advanced system that offers many more advantages over commonly used setups, such as distributed authentication based on Network Information Server (NIS).
This white paper is intended to introduce, describe, and explain a Kerberos environnement, and how to deploy such system for maximum efficiency with Single Sign On (SSO).
…
Website: www.kerberos.org | Filesize: 3676kb
No of Page(s): 62
Click 
to download The MIT Kerberos Administrators How-to Guide
Kerberos: The Definitive Guide
Mechanics of User Identification and Authentication: Fundamentals of Identity Management
Kerberos Security in a Client-ServerSystem Management Application: The Implementation of an Authentication Mechanism Using the Generic Security Services API
Kerberos: A Network Authentication System
Quick Configuration for OpenLDAP and Kerberos in Linux & Steps for Authenicalting Linux to Active Directory
