Overview - Kerberos Interoperability with DCE and Secure Remote Utilities
The authentication portion of the DCE Security Service is primarily based on Version 5 of the Kerberos network authentication system, which is described in Internet Engineering Task Force (IETF) RFC 1510. For the most part, this basis has allowed the DCE Security Server to operate as a Kerberos Key Distribution Center (KDC) for Kerberos V5 clients. In prior releases of DCE (Versions 1.2.1 and earlier), this interoperability was not officially supported or documented.
This topic explains interoperability features and configuration of DCE and Kerberos V5. The following main features are provided with the current release of DCE:
· Berkeley Software Distribution (BSD) remote utility interoperability: Secure versions of the BSD 4.4-Lite remote utilities are provided. These use Kerberos V5 authentication.
· KDC interoperability: The DCE Security Service can be used as a Kerberos KDC for Kerberos V5 clients.
· Credential cache and keytab file compatibility: DCE and Kerberos V5 applications are able to share credential cache and keytab files without losing data.