Fwd: How do the tickets remember the KDC?
Rick van Rein
rick at openfortress.nl
Fri Sep 12 15:07:29 EDT 2014
Hello Wendy,
> How do the tickets remember the KDC?
They don’t.
A ticket has a realm, which is looked up in your local kerberos configuration, or if you’re brave enough to trust DNS without DNSSEC in place, in there (after mapping the DNS name to a realmname). The same path reveals the choice between UDP and TCP (no SCTP possible AFAIK) and the port.
This is done when you first acquire your ticket, and it should be repeated later on.
I hope that’s what you were after.
-Rick
More information about the Kerberos
mailing list