Re: How can i tell what aunthentication method i am using Kerberos or Ldap?

From: Joe (user_at_host.com)
Date: 10/12/04 

Date: Tue, 12 Oct 2004 12:56:56 -0400

I believe LDAP does not provide authentication. Kerberos is an
authentication server and LDAP is used for authorization. Kerberos is used
to prove that you are who you say you are and LDAP decides if who you are
should be allowed to have access to a particular area. However, if you have
Windows 2000 and are running a domain then I don't think you're running LDAP
because you're using Active Directory. Also, Windows 2000 uses Kerberos by
default so unless you changed it you are definitely using Kerberos if you're
using anything at all.
Note: I believe Kerberos can be used in conjunction with LDAP to provide
both authentication and authorization by attaching the authorization info to
the Kerberos authentication tickets.

Joe

"prince" <prince083@hotmail.com> wrote in message
news:uq64kVFsEHA.596@TK2MSFTNGP11.phx.gbl...
> We are currently running w2000, is there a way i can check or find out if
> we are using Kerberos authentication or ldap authentication?
>
> thanks for the help
>
>

Relevant Pages

  • Re: Kerberized authorization service
    ... You could backend such a thing with LDAP or whatever you want ... the mail server could have an shell group with one ... While this could no doubt be made to work, it would tie the authorization ... I only have a very basic understanding of Kerberos but I'd love to help or at ...
    (comp.protocols.kerberos)
  • Re: application pool custom identity
    ... Kerberos becomes a possibility when the web server is in a Domain, ... The problem happens when the browser/server selects Kerberos authentication, ... LocalSystem credentials will work for Kerberos; custom AppPool Identity ... Authorization. ...
    (microsoft.public.inetserver.iis)
  • Re: Kerberos Confusion / Design Questions
    ... > I'm planning on deploying Sun-Kerberos with LDAP I have a few design ... > server via gssapi-keyex SSO and other servers can log back into my ... > that is puzzling me is how to handle Kerberos access, ... > authentication will basically be provided through LDAP at this point ...
    (comp.protocols.kerberos)
  • LDAP + Kerberos = Bloody Nightmare!
    ... Kerberos, and want to stick with as much in the way of Debian-packaged ... Getting LDAP and Kerberos to work hasn't been ... use LDAP for authentication, but very little on getting LDAP to allow ... bind anonymously, bind via TLS and SSL, execute queries, and so on. ...
    (Debian-User)
  • LDAP + Kerberos = Bloody Nightmare!
    ... Kerberos, and want to stick with as much in the way of Debian-packaged ... Getting LDAP and Kerberos to work hasn't been ... use LDAP for authentication, but very little on getting LDAP to allow ... bind anonymously, bind via TLS and SSL, execute queries, and so on. ...
    (Debian-User)