Hi, all,
I have an application where the client needs to authenticate to the server before carrying on further communications. The client will acquire ticket from KDC which runs in Microsoft's Domain Controller. After getting the ticket, the client will send the ticket and the authenticator together to the server for authentication. My question are:
1) Can I put the authenticator and ticket into MY application's message instead of Kerberos's Application Request message? For example, convert the authenticator and ticket into hex-coded string and put this string into the MY applicaiton's message.
Credential: 0fde234567abedghi
and at the server side, after receiving the authenticator and ticket from the application's message (NOT Kerberos's Application Request message), the server applies Kerberos algorithm to verify whether the credential is correct or not.
2) If the above solution works, which Kerberos API should I use? The client side runs on Windows platform, and the server will run on Linux box.
For sake of completeness, my application runs on UDP with re-transmission. The application message is text-based message.
Many thanks,
kaiduan
_________________________________________________________________
Take charge with a pop-up guard built on patented Microsoft� SmartScreen Technology http://join.msn.com/?pgmarket=en-ca&page=byoa/prem&xAPID=1994&DI=1034&SU=http://hotmail.com/enca&HL=Market_MSNIS_Taglines Start enjoying all the benefits of MSN� Premium right now and get the first two months FREE*.
________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
