Kerberos

Kerberos

 英

  • 網絡身份驗證;可魯貝洛斯;協議

例句

This section covers the necessary steps that an administrator needs to carry out to set up the above Kerberos configuration.

討論設置以上Kerberos配置步驟

An authentication error will occur if the user trying to connect is not same as the user whose credential is in the Kerberos cache.

如果試圖連接用戶與其憑證保存Kerberos緩存用戶不一致發生身份驗證錯誤

If SSO is not working for you at this point please continue and verify all Kerberos Prerequisites mentioned in the next section.

如果此時SSO不能正常工作繼續驗證提到所有Kerberos先決條件

Kerberos, which provides a secure means of authentication for network users, is one of the most popular authentication mechanisms.

Kerberos網絡用戶提供一種安全身份驗證手段流行身份驗證機制之一

It's the only one that supports Kerberos authentication and supports LDAP with an Active Directory server -- that type of thing.

唯一一個支持Kerberos認證帶有活動目錄服務器LDAP東西

NTLM authentication is required in networks where the server receives requests from clients that do not support Kerberos authentication.

服務器接收客戶端請求客戶端支持Kerberos身份驗證網絡必須使用NTLM身份驗證

Kerberos is an authentication protocol that uses 'tickets' to verify the identity of a user in an unprotected network.

Kerberos一種身份驗證協議使用票據驗證保護網絡用戶身份

In a Kerberos installation, each entity (individual users, computers, and services running on servers) has a principal associated with it.

Kerberos安裝每個實體服務器運行單個用戶計算機服務都擁有一個相關主體

But authentication service in Kerberos is just a component of key-distribution service.

身份驗證服務Kerberos只是密鑰分發服務一個組成部分

Fix: The Kerberos authentication protocol requires that the clock skew between a server and a client is no greater than 5 minutes.

解決方案Kerberos身份驗證協議要求服務器客戶機之間時鐘不大5分鐘

This will drop the existing sessions, and force a new session to be established and a Kerberos ticket received.

刪除現有會話然后強制建立新會接收Kerberos票證

On the next page, name the realm as kerberos-realm and select realm type as Other and click Next as shown in Figure 10.

下一個頁面域名設置kerberos-realm,選擇Other作為類型然后單擊Next10

It helps administrators restrict the Kerberos ticket lifetime issued to any user from that particular client AIX machine.

有助于管理員限制AIX客戶機機器用戶頒發Kerberos票據生命期

Except for clients C and E, every other client is able to communicate and work with the Kerberos server without any further changes.

除了客戶端CE之外其他所有客戶端可以Kerberos服務器通信需要任何修改

Windows SharePoint Services will disable Kerberos authentication in Internet Information Services on your server during installation.

安裝期間WindowsSharePointServices服務器禁用Internet信息服務Kerberos身份驗證

The Kerberos authentication protocol is a security protocol that verifies data to help ensure that both user and network services are safe.

Kerberos身份驗證協議一種安全協議用于驗證數據幫助確保用戶網絡服務安全

The Kerberos user information is stored in a database (usually a flat file on local filesystem in case of legacy configuration).

Kerberos用戶信息存儲一個數據庫遺留配置常常文件系統文件)。

It then covered the general techniques being used in field of distributed security followed by details on Kerberos.

然后詳細介紹分布式安全領域使用一般技術以及Kerberos

As a part of Kerberos interoperability, most of the Kerberos implementation supports a theory called inter-realm configuration.

作為Kerberos互操作性一部分大多數Kerberos實現支持一種稱為領域配置思想

Moreover, AIX supports the storage of common user information, along with its relative Kerberos and LDAP attributes in the LDAP directory.

另外AIX支持LDAP目錄存儲常用用戶信息以及相關KerberosLDAP屬性

Kerberos essentially consists of a complex process called Kerberos authentication protocol (KAP).

Kerberos本質上包含一個稱為Kerberos身份驗證協議KAP復雜過程

Kerberos V5 and NTLM are used for server authentication, which verifies a Message Queuing server to a client.

KerberosV5NTLM用于服務器身份驗證也就是客戶端驗證消息隊列服務器

For a KDC in one realm to authenticate Kerberos users in a different realm, it must share a key with the KDC in the other realm.

如果一個領域KDC另一個領域Kerberos用戶進行身份驗證必須另一個領域KDC共享密鑰

Thus, provisions for granular control and enhanced manageability of Kerberos credentials over AIX is another reason for riding up the grade.

因此提供控制可以增強Kerberos憑證管理另一個升級理由

Ideally, the client machine is configured so that the login process acquires Kerberos credentials for the user as he or she logs in.

理想情況配置客戶機機器這樣登錄過程要求用戶登錄提供Kerberos憑證

Once identity is verified, kerberos provides the two computer with encryption keys for a secure communication session.

一旦身份得到驗證KERBEROS協議計算機提供密匙進行安全通訊對話

Kerberos assumes that the clocks of all the machines in the realm are closely synchronized within the limit of the allowed time skew.

Kerberos假設所有機器允許時間相位限制緊密同步

However, this indicates that there may be a configuration issue preventing the use of Kerberos authentication.

但是預示存在配置問題禁止使用Kerberos身份驗證

Principals and policies are the main administrative entities in a Kerberos setup.

主體Principals策略policiesKerberos設置主要管理實體

This developerWorks article is a very basic primer of Kerberos and a good place to start.

developerWorks文章提供非常基礎Kerberos知識一個出發點

Kerberos authentication is an Internet standard authentication mechanism.

Kerberos身份驗證一種標準Internet身份驗證機制

is the Kerberos realm and must be shown in all uppercase letters.

Kerberos領域必須全部大寫字母顯示

Finally, we discuss the common problems that readers may encounter when setting up the Kerberos environment.

最后我們討論設置Kerberos環境可能遇到一些常見問題

Kerberos also provides a system for authorization in the form of administering tokens or credentials.

Kerberos管理令牌憑據形式提供了一種授權系統

The login module can be interactive and prompt for a principal's Kerberos name or password.

登錄模塊可以交互式可以提示主體Kerberos用戶密碼

In the third section, I'll show how you can generate a cryptographic key used for encryption and decryption in Kerberos messaging.

第三展示如何生成一個用于Kerveros通信進行加密解密密鑰

They also do not support the GSS-API plug-in authentication method, except Kerberos.

除了Kerberos之外它們支持GSS-API插件身份驗證方法

In practical situations, the NFS domains may be configured with different Kerberos realms (administrative domains).

實際環境可能不同Kerberos領域管理配置NFS

IP gateways do not support either NTLM or Kerberos authentication.

IP網關支持NTLMKerberos身份驗證

The result of Step 11 is a secret key that the Kerberos client can use to communicate with the Kerberos server.

第11結果一個Kerveros客戶機可以用來Kerberos服務器進行通信