Re: form based auth using kerberos ?
- From: <Paul_Lemonidis@xxxxxxxxxxx>
- To: "[ExchangeList]" <exchangelist@xxxxxxxxxxxxx>
- Date: Fri, 27 Aug 2004 18:52:28 +0100
Hi
I do not claim to be an expert on this but I think I may be able to shed
some light on the issue.
I think the strict answer to your question is yes it does but since the
client would not have access to a Keberos Key Distribtion Centre (KDC) that
is common to both client and server authentication would fail. A KDC server
outside your internal netwoirk would be insecure for obvios reasons. Thus
why basic authentication is normally used and thus SSL is required for
secure communications without passwords being compormised as basic
authentication does end passwords in the clear.
See the link below too. Hope this helps?
http://support.microsoft.com/default.aspx?scid=kb;en-us;282805
Regards,
Paul Lemonidis.
----- Original Message -----
From: <m1r4cle_26@xxxxxxxxx>
To: "[ExchangeList]" <exchangelist@xxxxxxxxxxxxx>
Sent: Friday, August 27, 2004 7:33 PM
Subject: [exchangelist] form based auth using kerberos ?
http://www.MSExchange.org/
Hello,
How does form-based authentication of OWA 2003 authenticate users actually
?
Is it by basic authentication where username & password are sent in clear
?
Will kerberos work with form-based authentication ?
thank you
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp
Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 ISA Server Resource Site: http://www.isaserver.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this MSEXchange.org Discussion List as:
paul_lemonidis@xxxxxxxxxxx
To unsubscribe visit
http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
Report abuse to listadmin@xxxxxxxxxxxxxx
Other related posts:
- » form based auth using kerberos ?
- » Re: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
- » RE: form based auth using kerberos ?
http://www.MSExchange.org/
Hello,
How does form-based authentication of OWA 2003 authenticate users actually ? Is it by basic authentication where username & password are sent in clear ? Will kerberos work with form-based authentication ?
thank you
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp
Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 ISA Server Resource Site: http://www.isaserver.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this MSEXchange.org Discussion List as: paul_lemonidis@xxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=exchangelist
Report abuse to listadmin@xxxxxxxxxxxxxx