SYSTEMS AND METHODS FOR USING EXTERNAL AUTHENTICATION SERVICE FOR KERBEROS PRE-AUTHENTICATION
First Claim
Patent Images
1. A method, comprising:
- receiving, from a principal of an authentication service, a request for authentication of the principal for the authentication service;
authenticating the principal in the authentication service; and
providing a key associated with the authenticated principal in the authentication service to a Kerberos Key Distribution Center (KDC).
5 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for providing Kerberos pre-authentication are presented. According to a method embodiment, a request for authentication is received from a principal of an authentication service. The principal in the authentication service is authenticated. A key associated with the authenticated principal in the authentication service is provided to a Kerberos Key Distribution Center (KDC).
-
Citations
24 Claims
-
1. A method, comprising:
-
receiving, from a principal of an authentication service, a request for authentication of the principal for the authentication service; authenticating the principal in the authentication service; and providing a key associated with the authenticated principal in the authentication service to a Kerberos Key Distribution Center (KDC). - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method, comprising:
-
receiving a key from a directory service, wherein the key is associated with an authenticated principal for the directory service; pre-authenticating the principal for Kerberos using the key; receiving a request from the principal to access a Kerberos-enabled service; and granting a ticket with a session key to the principal to enable the principal to communicate with the Kerberos-enabled service. - View Dependent Claims (13, 14)
-
-
15. A system, comprising:
-
a directory service, including an authentication service for the directory service; wherein the authentication service is to authenticate a principal of the directory service, generate a random key associated with the authenticated principal of the directory service, and provide a Kerberos Key Distribution Center (KDC) with the random key associated with the authenticated principal. - View Dependent Claims (16, 17, 18, 19, 20)
-
-
21. A network, comprising:
-
an authentication service; a Kerberos Key Distribution Center (KDC); a principal; and a Kerberos-enabled service, the authentication service is to authenticate the principal for both the directory service and the KDC, the KDC is to pre-authenticate the principal for Kerberos, receive a request from the principal to access the service, and grant a ticket with a session key to the principal to enable the principal to communicate with the Kerberos-enabled service. - View Dependent Claims (22, 23, 24)
-
Specification