Decrypting KRB_CRED in AP_REQ

Greg Hudson ghudson at MIT.EDU
Thu Mar 31 10:52:09 EDT 2011

On Thu, 2011-03-31 at 00:17 -0400, Weijun Wang wrote:
> Here, it seems the decrypt key should be the session key of the service 
> ticket. What shall I do if the authenticator has a subkey?

You should still use the session key of the service ticket.

Heimdal and MIT krb5 both attempt to decrypt with the session key and
subkey.  But Microsoft Kerberos only decrypts with the session key.  We
found this out the hard way when we accidentally started encrypting
GSSAPI forwarded creds with the subkey in 1.8.

> So, does the case in RFC 4121 4.1.1 I quoted above belongs to "this 
> specific application session"?

I would not say that GSSAPI forwarded creds belong to the application
session, no.  At any rate, the more specific statement in RFC 4121 takes

More information about the krbdev mailing list