Thanks for the great illustration Adam regarding the Kerberos Authentication and Access process in your course. I just have one question, For the very first logon step when a user provides a username and a password through his/her client. What is the client in this case? is it a browser? Also, you mentioned that the client encrypts only the user name and send it to the KDC, so how does that work? Meaning, how does the client know the password was legit if the directory service DB is hosted within the KDC?
-
CISSP Question - Kerberos logon process
-
Greetings @Majed-Afandi
Here is a fairly detailed explanation of how Kerberos authentication works. I hope it helps you out.