Questions on kerberos (principal, service, renew command)
Joe
kuan.joe at gmail.com
Wed Jul 5 15:15:02 EDT 2006
Hi all,
I have the following questions by looking at the kerberos packets
(Windows login) through ethereal:
1. There are several service names, such as host, ldap, LDAP, cifs,
etc
What is the difference between ldap and LDAP?
What does service, host, do?
2. There are some TGS-REP with principal name, hostname$. What does
this mean?
3. After a TGS-REQ renew request (KDCOption == 0x02), then a TGS-REP
with kbrtgt. Then there is always another TGS-REQ and TGS-REP for
kbrtgt service. Why is that?
Many thanks
Joe
More information about the Kerberos
mailing list