服务票证(STkt)。
A client must obtain an STkt to authenticate with server.
客户端必须获得STkt来对服务器进行身份验证。
If it is a valid request from client, it extracts the session key from the STkt using server secret key.
如果它是来自客户端的有效请求,它使用服务器秘密密钥从STkt提取会话密钥。
The main objective of STkt request is to get a new session key for the client to use with the security server.
STkt请求的主要目标是获得一个新会话密钥,供客户端与安全服务器一起使用。
After confirming the associated fields in the PSTkt request, the authentication service proceeds to generate an STkt.
在确认了PSTkt请求中的相关字段之后,身份验证服务继续生成一个STkt。
The client makes an RPC call to the server, and the STkt containing the session key passed as a part of the RPC protocol.
客户端向服务器发出RPC调用,并将包含会话密钥的STkt作为RPC协议的一部分传递给服务器。
The STkt is then encrypted using the target server secret key. So target server can decrypt the STkt request using its secret key.
STkt然后使用目标服务器的秘密密钥加密,这样目标服务器就能够使用自己的秘密密钥解密stkt请求。
Thus, every cache miss on the server triggered a callback RPC that had to fetch the user's credential (STKT + PAC) in its entirety.
因此,服务器上的每次缓存缺页都会触发一个RPC回调,它会获取整个完整的用户证书(STKT +PAC)。
The client starts with sending a TGT to the authentication service which in turn provides the client with an STkt and a session key.
客户端首先将一个tgt发送给授权服务,授权服务然后向客户端提供一个STkt和一个会话密钥。
The STkt response message includes first the session key for use between the client and targeted server and then also the identity of the client.
STkt响应消息包含在客户端与目标服务器之间使用的会话密钥,还包含客户端的身份。
The authentication service then encrypts the STkt and copy of the session key using the TGT session key and sends the message back to the client.
身份验证服务然后使用TGT会话密钥加密stkt和会话密钥的副本,再将消息发回给客户端。
Client makes an STkt request via authenticated RPC to authentication service to get a new session key for the client to communicate with any server.
客户端通过身份验证r PC向身份验证服务发出一个STkt请求,以获取供客户端与任何服务器通信所用的新会话密钥。
The TGT also serves a place where the authentication service can store any information it will later need for servicing STkt request from this client.
TGT还提供了一个位置,供身份验证服务存储它在以后响应此客户端的STkt请求所需的所有信息。
After checking the identity of client request, the authentication service constructs the STkt that would allow client to authenticate with target server.
检查了请求客户端的身份后,身份验证服务构造一个STkt,供客户端用来验证目标服务器。
The encrypted portion of the STkt contains the name of the client, a session key generated by authentication service that client and server can use, and a lifetime of STkt.
STkt的加密部分包含客户端的名称、身份验证服务生成的一个可供客户端和服务器使用的会话密钥,以及STkt的有效期。
The encrypted portion of the STkt contains the name of the client, a session key generated by authentication service that client and server can use, and a lifetime of STkt.
STkt的加密部分包含客户端的名称、身份验证服务生成的一个可供客户端和服务器使用的会话密钥,以及STkt的有效期。
应用推荐