Maximum AP and AS message sizes
Tim Alsop
Tim.Alsop at CyberSafe.Ltd.UK
Mon Jul 21 11:27:11 EDT 2003
Eric,
You also need to consider :
i) Whether IP addresses are stored in the tickets. In particular on a multi homed system the number of addresses can be quite large.
ii) Whether the KDC is a Microsoft KDC because PAC data will be stored in tickets.
These, along with PKINIT requirements are the major contributors to large tickets, and hence large request/response packets to/from the KDC.
Cheers, Tim.
-----Original Message-----
From: Naud, Eric [mailto:eric.naud at Terayon.com]
Sent: 21 July 2003 16:23
To: kerberos at mit.edu
Subject: Maximum AP and AS message sizes
Hi All,
Can anyone tell me what the AP and AS message size maximums would be and what factor are to be considered?
I'm using PKINIT so I know my AS request will be rather large due to the certificate.
Thank!
Eric Naud
Software Development Engineer, Ottawa Design Center Imedia Semiconductor
613.592.1052 x232
mailto:eric.naud at imedia.com
________________________________________________
Kerberos mailing list Kerberos at mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
More information about the Kerberos
mailing list