Kerberos Servers - Managing Kerberos and Other Authentication Services in Oracle® Solaris 11.2

Managing Kerberos and Other Authentication Services in Oracle^® Solaris 11.2

Exit Print View

» ...Documentation Home » Oracle Solaris 11.2 Information Library » Managing Kerberos and Other Authentication ... » About the Kerberos Service » Kerberos Components » Kerberos Servers

Updated: August 2014

Managing Kerberos and Other Authentication Services in Oracle^® Solaris 11.2

Document Information

Using This Documentation

Chapter 1 Using Pluggable Authentication Modules

Chapter 2 About the Kerberos Service

Chapter 3 Planning for the Kerberos Service

Chapter 4 Configuring the Kerberos Service

Chapter 5 Administering Kerberos Principals and Policies

Chapter 6 Using Kerberos Applications

Chapter 7 Kerberos Service Reference

Chapter 8 Kerberos Error Messages and Troubleshooting

Chapter 9 Using Simple Authentication and Security Layer

Chapter 10 Configuring Network Services Authentication

Appendix A DTrace Probes for Kerberos

Security Glossary

Language:

Kerberos Servers

Each realm must include a server that maintains the master copy of the principal database. This server is called the master KDC server. Additionally, each realm should contain at least one slave KDC server, which contains a duplicate copy of the principal database. Both the master KDC server and the slave KDC server create tickets that are used to establish authentication.

The realm can also include a Kerberos application server. This server provides access to Kerberized services such as ftp, ssh, and NFS.

The following figure shows what a hypothetical realm might contain.

Figure 2-4 A Typical Kerberos Realm

image:Diagram shows a typical Kerberos realm, EXAMPLE.COM, which contains a master KDC, three clients, two slave KDCs, and two application servers.

Copyright © 2002, 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices