[23604] in Kerberos
Newbie's question
daemon@ATHENA.MIT.EDU (kaiduan xie)
Wed Mar 30 19:34:05 2005
Message-ID: <BAY24-F27258B78D929CE2AC4DDEBCA470@phx.gbl>
From: "kaiduan xie" <kaiduanx@hotmail.com>
To: kerberos@mit.edu
Date: Wed, 30 Mar 2005 16:33:21 -0800
Mime-Version: 1.0
Content-Type: text/plain; format=flowed
Errors-To: kerberos-bounces@mit.edu
Hi, all,
I have an application where the client needs to authenticate to the server
before carrying on further communications. The client will acquire ticket
from KDC which runs in Microsoft's Domain Controller. After getting the
ticket, the client will send the ticket and the authenticator together to
the server for authentication. My question are:
1) Can I put the authenticator and ticket into MY application's message
instead of Kerberos's Application Request message? For example, convert the
authenticator and ticket into hex-coded string and put this string into the
MY applicaiton's message.
Credential: 0fde234567abedghi
and at the server side, after receiving the authenticator and ticket from
the application's message (NOT Kerberos's Application Request message), the
server applies Kerberos algorithm to verify whether the credential is
correct or not.
2) If the above solution works, which Kerberos API should I use? The client
side runs on Windows platform, and the server will run on Linux box.
For sake of completeness, my application runs on UDP with re-transmission.
The application message is text-based message.
Many thanks,
kaiduan
_________________________________________________________________
Take charge with a pop-up guard built on patented Microsoft® SmartScreen
Technology
http://join.msn.com/?pgmarket=en-ca&page=byoa/prem&xAPID=1994&DI=1034&SU=http://hotmail.com/enca&HL=Market_MSNIS_Taglines
Start enjoying all the benefits of MSN® Premium right now and get the
first two months FREE*.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos