Kerberos Delegation
ecy1_at_bezeqint.net
Date: 01/29/04
- Next message: Ali: "What is the purpose of FormsAuthentication.SignOut()?"
- Previous message: Memi Lavi: "Change user's group in ASP.NET"
- Next in thread: Paul Glavich: "Re: Kerberos Delegation"
- Reply: Paul Glavich: "Re: Kerberos Delegation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 Jan 2004 04:16:17 -0800
Hi
I would like to know if Kerberos Delegation is possible in
a multi Hop scenario.
For example: Is the following scenario possible?
A Client C Transfer its {TGT} to server "S" for
Delegation, Server S will FORWARD this {TGT} to server T
for delegation again, (Second Hop).
Server T will finally ask for a ticket form service server
Q to be able to call that service in client's C name.
The question is: Is it possible for the Kerberos
delegation algorithm to run through multiple Hops?
I have read about Kerberos and found many explanations
about Delegation but ALL described Only one hop scenario.
Does this mean that Multi Hop Scenario is not possible?
Is there an article and example showing this?
Thanks
Emmanuel Kahn
ecy1@bezeqint.net
- Next message: Ali: "What is the purpose of FormsAuthentication.SignOut()?"
- Previous message: Memi Lavi: "Change user's group in ASP.NET"
- Next in thread: Paul Glavich: "Re: Kerberos Delegation"
- Reply: Paul Glavich: "Re: Kerberos Delegation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
