Menu
I am new on kerberos authentication and don't know anything about it. I have the server name, username and password ready for it.
I need to authenticate users from stand alone windows application. Can somebody please help?
I did not find much help on googling.
Appreciate any thought.
977
Click the Start button, right-click Computer, and then click Properties. Click Advanced System Settings. In the System Properties dialog box, click the Advanced tab and then click Environment Variables. In the Environment Variables dialog box, check if the KRB5CCNAME variable appears in the System variables list.
Kerberos support is built in to all major computer operating systems, including Microsoft Windows, Apple macOS, FreeBSD and Linux. Since Windows 2000, Microsoft has used the Kerberos protocol as the default authentication method in Windows, and it is an integral part of the Windows Active Directory (AD) service.
The Kerberos protocol defines how clients interact with a network authentication service. Clients obtain tickets from the Kerberos Key Distribution Center (KDC), and they present these tickets to servers when connections are established. Kerberos tickets represent the client's network credentials.
Kerberos is a computer network security protocol that authenticates service requests between two or more trusted hosts across an untrusted network, like the internet. It uses secret-key cryptography and a trusted third party for authenticating client-server applications and verifying users' identities.
In Kerberos you authenticate not with pair username/password, but by attaching Kerberos token, which you can grab from CredentialsCache.
WebRequest WReq = WebRequest.Create (MyURI);
WReq.Credentials = CredentialCache.DefaultCredentials;
see: https://msdn.microsoft.com/en-us/library/yk7437c8%28v=vs.110%29.aspx
The second line will give you NTLM or Kerberos credentials. You'll get Kerberos credentials when:
When you execute 'CredentialCache.DefaultCredentials', your application uses underlying mechanisms to generate SPNEGO token for you. Inside it, will be Keberos or NTLM ticket. Here's how it works:
66
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
