What Are the Two Common Central Authentication Server Standards Discussed in the Textbook? How Do They Work?
Autor: 123123456 • July 22, 2017 • Essay • 288 Words (2 Pages) • 778 Views
The two common central authentication server standards discussed in the textbook are RADIUS and Kerberos. How each central authentication server works is explained below. 1. RADIUS. There are 3 devices involved for RADIUS to work, which are the RADIUS central authenticator server, the authenticator device, and the supplicant (PC. laptop, etc.). The supplicant sends it credentials such as password to an authenticator. The authenticator then sends the credentials on to the RADIUS central authentication server for verification. The RADIUS server then verifies the credentials and sends a message back to the authenticator. The message tells the authenticator if the credentials were verified. If the credentials are ok, then the authenticator accepts the supplicant. If the credentials are not ok, then the authenticator rejects the supplicant. 2. Kerberos - The Kerberos central authentication server also serves as a key distribution center. Just as in RADIUS, the devices are involved, the Kerberos central authentication server, the supplicant, and the verifier/host server. The supplicant (client PC), sends it credentials to the Kerberos. If the credentials are ok, the Kerberos sends a ticket-granting ticket (TGT) to the server. This allows the supplicant to get back into the server without going through the authentication process again. When the supplicant is ready to talk to the host, it sends the TGT to the Kerberos, which proves it has been authenticated already, and the Kerberos sends the supplicant back a service ticket containing the session key. The supplicant then sends the service ticket with the key to the host. The host decrypts the service ticket to get the key and any permissions that the supplicant should have. If the key is verified by the host (shared key), then it opens the communications with the supplicant.
...