Manualshelf

HP CIFS Server and Kerberos

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
11121314151617181920
14
Here is the netlogon sequence as the user gets authenticated from the client into the domain. The
krb5-as-req is the user authentication and request. The krb5-as-rep reply from the KDC sends
credentials to the client, including a client session key and TGT that allows the client to access the
KDC. The client then uses the session key and TGT for krbtgt to request a service ticket – krb5-tgs-
req. This particular request is not for the CIFS server, because we have not mapped the share yet.
At the end of this exchange, the client is authenticated into the domain and has access to the KDC to
request domain services.
Below is the Wireshark trace that illustrates the sequence from the above diagram. The KRB_AS_REP
shows that the client user buffy is authenticated and the KDC has sent a krbtgt for the HPATC2003
domain.