What is a key reason Kerberos authentication is preferred in AD DS environments?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the Longhorn Server Training Test with our quiz. Study with flashcards and multiple choice questions. Each question includes hints and explanations to enhance your learning experience. Get ready to ace your exam!

Multiple Choice

What is a key reason Kerberos authentication is preferred in AD DS environments?

Explanation:
Kerberos in AD DS relies on a trusted authority (the Key Distribution Center on the domain controller) to issue time-limited tickets that prove the user’s identity to both clients and services. When you log in, you obtain a Ticket Granting Ticket, and from there you request service tickets for specific resources. This system provides mutual authentication: the client verifies the service, and the service verifies the client, without sending the user’s password over the network. Because authentication is done with these tickets and session keys rather than password-based challenges, it is faster and more secure than NTLM and supports seamless single sign-on across the domain. Kerberos is the default authentication method in AD DS, which is why it’s the preferred approach in these environments.

Kerberos in AD DS relies on a trusted authority (the Key Distribution Center on the domain controller) to issue time-limited tickets that prove the user’s identity to both clients and services. When you log in, you obtain a Ticket Granting Ticket, and from there you request service tickets for specific resources. This system provides mutual authentication: the client verifies the service, and the service verifies the client, without sending the user’s password over the network. Because authentication is done with these tickets and session keys rather than password-based challenges, it is faster and more secure than NTLM and supports seamless single sign-on across the domain. Kerberos is the default authentication method in AD DS, which is why it’s the preferred approach in these environments.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy