TGT: Ticket-Granting Ticket

kinit

userid

session key encrypted

with the user’s password

and

ticket-granting ticket

encrypted with

KDC password

Authentication:

user must decrypt

the session key

The ticket includes:

- session key

- user name

- IP address

- service name

- lifespan

- timestamp

and is encrypted with

the service password

Previous slide

Next slide

Back to first slide

View graphic version