Newbie's question
kaiduan xie
kaiduanx at hotmail.com
Wed Mar 30 19:33:21 EST 2005
Hi, all,
I have an application where the client needs to authenticate to the server
before carrying on further communications. The client will acquire ticket
from KDC which runs in Microsoft's Domain Controller. After getting the
ticket, the client will send the ticket and the authenticator together to
the server for authentication. My question are:
1) Can I put the authenticator and ticket into MY application's message
instead of Kerberos's Application Request message? For example, convert the
authenticator and ticket into hex-coded string and put this string into the
MY applicaiton's message.
Credential: 0fde234567abedghi
and at the server side, after receiving the authenticator and ticket from
the application's message (NOT Kerberos's Application Request message), the
server applies Kerberos algorithm to verify whether the credential is
correct or not.
2) If the above solution works, which Kerberos API should I use? The client
side runs on Windows platform, and the server will run on Linux box.
For sake of completeness, my application runs on UDP with re-transmission.
The application message is text-based message.
Many thanks,
kaiduan
_________________________________________________________________
Take charge with a pop-up guard built on patented Microsoft® SmartScreen
Technology
http://join.msn.com/?pgmarket=en-ca&page=byoa/prem&xAPID=1994&DI=1034&SU=http://hotmail.com/enca&HL=Market_MSNIS_Taglines
Start enjoying all the benefits of MSN® Premium right now and get the
first two months FREE*.
More information about the Kerberos
mailing list