[27827] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Interoperability with Microsoft KDC using AES

daemon@ATHENA.MIT.EDU (Ankur Upadhyaya)
Tue May 29 19:26:28 2007

To: kerberos@mit.edu
MIME-Version: 1.0
Message-ID: <OF563F7C80.153FC0CA-ON882572EA.0080A221-882572EA.0080C691@ca.ibm.com>
From: Ankur Upadhyaya <ankur@ca.ibm.com>
Date: Tue, 29 May 2007 16:26:06 -0700
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Based on what I have read so far, I understand that only DES encryption 
can be used if client and server principals using MIT Kerberos 5 are to 
interoperate with a Microsoft Windows Server 2000 or 2003 Active Directory 
KDC.

As of Windows Server 2008, however, Microsoft will support 256-bit AES 
encryption for its Kerberos implementation.  Does anybody have any 
information on whether or not MIT Kerberos 5 principals will be able to 
interoperate with this Microsoft KDC using 256-bit AES encryption (or 
anything stronger than DES)?
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[27827] in Kerberos

Interoperability with Microsoft KDC using AES

daemon@ATHENA.MIT.EDU (Ankur Upadhyaya)Tue May 29 19:26:28 2007

daemon@ATHENA.MIT.EDU (Ankur Upadhyaya)
Tue May 29 19:26:28 2007