But I can’t just walk into the theatre with my popcorn and enjoy the show. I really want to see the movie Shrek which my local theatre has started showing again. To describe how KRBTGT works, I’ll put it in terms of going to the movie theatre. Specifically, KRB means Kerberos, and TGT stands for Ticket Granting Ticket. This is and has been the default Microsoft Windows authentication and authorization protocol used to grant access to network applications and services since Windows Server 2000. Guarding the gates to your network is a three-way trust called Kerberos. In Greek mythology, Cerberus is a three-headed dog that guards the entrance to Hades. What does KRBTGT stand for and how is it used? In this blog post, we take a deeper dive into KRBTGT and answer some of your toughest Microsoft security questions.
I discussed some of these issues at Microsoft Ignite this year with Microsoft Certified Master Sean Metcalf (you may have seen the related blog post on 6 AD Security Public Service Announcements). Understanding the ins and outs of KRBTGT accounts can mean the difference between having a secure, compliant network and opening up your organization to vulnerabilities that could allow perpetrators to impersonate authentication and wreak havoc in your network. KRBTGT is an account used for Microsoft’s implementation of Kerberos, the default Microsoft Windows authentication protocol.
0 kommentar(er)
