I have a question about forward in Kerberos: Does forward mean that the end

Question

0

Asked: May 26, 20262026-05-26T18:51:49+00:00 2026-05-26T18:51:49+00:00

I have a question about forward in Kerberos: Does forward mean that the end

0

I have a question about forward in Kerberos:
Does forward mean that the end user will give the TGT to a service so that the service can use the TGT to request others tickets when necessary? If it is the case, does that mean when user first authenticates himself/herself to AS, user will set certain flags, and AS will return user a TGT with FORWARDED set? And then user will give this TGT to service? Is this right? Or asked in other way, if user gives TGT to a service, this FORWARDED TGT is issued by AS or TGS? Thank you.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-26T18:51:49+00:00

Editorial Team

2026-05-26T18:51:49+00:00Added an answer on May 26, 2026 at 6:51 pm

Your first assumption is right. The forwarded TGT should be included in the service ticket which is generated with the help of the AS. Otherwise the client has no chance to verify if the service is really registered. Have a look at this. It might help you.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have a question about forward in Kerberos: Does forward mean that the end

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply