The following table lists some of the terms that you need to understand as you set up the Novell Kerberos KDC.
Table D-1 Important Kerberos Terms
Kerberos Term |
Definition |
---|---|
Key (also referred to as Secret Key) |
An encryption key shared by a principal and the KDC, distributed outside the system, with a long lifetime. In the case of a user’s principal, the key is derived from a password. |
Principal |
An entity in the network. Each entity corresponds to a principal. |
Realm |
A logical grouping of principals. |
Service |
A resource provided to network clients, such as a server holding a ZENworks policy or an application. |
Service ticket |
A record required to access services in the network. |
Session key |
A temporary encryption key used between two principals, with a lifetime limited to the duration of a single login session. |
Ticket |
A record that helps a client authenticate itself to a server. It contains information such as client's identity, a session key, a timestamp, and other information---all sealed using the server's secret key. |
Ticket Granting Ticket (TGT) |
The initial ticket obtained after a successful login. This ticket is used to get the service ticket to access a service. |