Kerberos Delegation
From: manukahn (manukahn.10somr_at_mail.mcse.ms)
Date: 01/29/04
- Next message: Crirus: "Re: Security error when running .NET user control in IE"
- Previous message: Crirus: "Connection made from IE embedded application to the same server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 Jan 2004 07:03:32 -0600
Hi
I would like to know if Kerberos Delegation is possible in a multi Hop
scenario.
For example: Is the following scenario possible?
A Client C Transfer its {TGT} to server "S" for Delegation, Server S
will FORWARD this {TGT} to server T for delegation again, (Second Hop).
Server T will finally ask for a ticket form service server Q to be able
to call that service in client's C name.
The question is: Is it possible for the Kerberos delegation algorithm
to run through multiple Hops?
I have read about Kerberos and found many explanations about Delegation
but ALL described Only one hop scenario.
Does this mean that Multi Hop Scenario is not possible?
Is there an article and example showing this?
Thanks
Emmanuel Kahn
Ecy1@bezeqint.net
manukahn
------------------------------------------------------------------------
Posted via http://www.mcse.ms
------------------------------------------------------------------------
View this thread: http://www.mcse.ms/message341311.html
- Next message: Crirus: "Re: Security error when running .NET user control in IE"
- Previous message: Crirus: "Connection made from IE embedded application to the same server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
