Kerberos
美 
英
例句
This section covers the necessary steps that an administrator needs to carry out to set up the above Kerberos configuration.
本节讨论设置以上Kerberos配置所需的步骤。
An authentication error will occur if the user trying to connect is not same as the user whose credential is in the Kerberos cache.
如果试图连接的用户与其凭证保存在Kerberos缓存中的用户不一致,将发生身份验证错误。
If SSO is not working for you at this point please continue and verify all Kerberos Prerequisites mentioned in the next section.
如果此时SSO还不能正常工作,请继续验证下一节提到的所有Kerberos先决条件。
Kerberos, which provides a secure means of authentication for network users, is one of the most popular authentication mechanisms.
Kerberos为网络用户提供了一种安全的身份验证手段,是最流行的身份验证机制之一。
It's the only one that supports Kerberos authentication and supports LDAP with an Active Directory server -- that type of thing.
它是唯一一个支持Kerberos认证和带有活动目录服务器的LDAP(此类东西)的后端。
NTLM authentication is required in networks where the server receives requests from clients that do not support Kerberos authentication.
在服务器接收客户端的请求而客户端不支持Kerberos身份验证的网络中,必须使用NTLM身份验证。
Kerberos is an authentication protocol that uses 'tickets' to verify the identity of a user in an unprotected network.
Kerberos是一种身份验证协议,它使用‘票据’验证未受保护的网络中的用户的身份。
In a Kerberos installation, each entity (individual users, computers, and services running on servers) has a principal associated with it.
在Kerberos安装中,每个实体(在服务器上运行的单个用户、计算机和服务)都拥有一个与之相关联的主体。
But authentication service in Kerberos is just a component of key-distribution service.
但身份验证服务在Kerberos中只是密钥分发服务的一个组成部分。
Fix: The Kerberos authentication protocol requires that the clock skew between a server and a client is no greater than 5 minutes.
解决方案:Kerberos身份验证协议要求服务器和客户机之间的时钟差不大于5分钟。
This will drop the existing sessions, and force a new session to be established and a Kerberos ticket received.
这将删除现有会话,然后强制建立新会话并接收Kerberos票证。
On the next page, name the realm as kerberos-realm and select realm type as Other and click Next as shown in Figure 10.
在下一个页面中,将域名设置为kerberos-realm,选择Other作为域类型,然后单击Next,如图10所示。
It helps administrators restrict the Kerberos ticket lifetime issued to any user from that particular client AIX machine.
它有助于管理员限制向这台AIX客户机机器的用户颁发的Kerberos票据的生命期。
Except for clients C and E, every other client is able to communicate and work with the Kerberos server without any further changes.
除了客户端C和E之外,其他所有客户端都可以与Kerberos服务器通信,不需要任何修改。
Windows SharePoint Services will disable Kerberos authentication in Internet Information Services on your server during installation.
安装期间,WindowsSharePointServices将在您的服务器上禁用Internet信息服务中的Kerberos身份验证。
The Kerberos authentication protocol is a security protocol that verifies data to help ensure that both user and network services are safe.
Kerberos身份验证协议是一种安全协议,用于验证数据以帮助确保用户和网络服务均是安全的。
The Kerberos user information is stored in a database (usually a flat file on local filesystem in case of legacy configuration).
Kerberos用户信息存储在一个数据库中(在遗留的配置中常常是文件系统中的文件)。
It then covered the general techniques being used in field of distributed security followed by details on Kerberos.
然后详细介绍了分布式安全领域所使用的一般技术,以及Kerberos。
As a part of Kerberos interoperability, most of the Kerberos implementation supports a theory called inter-realm configuration.
作为Kerberos互操作性的一部分,大多数Kerberos实现都支持一种称为跨领域配置的思想。
Moreover, AIX supports the storage of common user information, along with its relative Kerberos and LDAP attributes in the LDAP directory.
另外,AIX支持在LDAP目录中存储常用的用户信息以及相关的Kerberos和LDAP属性。
Kerberos essentially consists of a complex process called Kerberos authentication protocol (KAP).
Kerberos在本质上包含一个称为Kerberos身份验证协议(KAP)的复杂过程。
Kerberos V5 and NTLM are used for server authentication, which verifies a Message Queuing server to a client.
KerberosV5和NTLM用于服务器身份验证,也就是向客户端验证“消息队列”服务器。
For a KDC in one realm to authenticate Kerberos users in a different realm, it must share a key with the KDC in the other realm.
如果一个领域中的KDC要对另一个领域中的Kerberos用户进行身份验证,它就必须与另一个领域中的KDC共享密钥。
Thus, provisions for granular control and enhanced manageability of Kerberos credentials over AIX is another reason for riding up the grade.
因此,提供细粒度控制可以增强Kerberos凭证的可管理性,这是另一个升级理由。
Ideally, the client machine is configured so that the login process acquires Kerberos credentials for the user as he or she logs in.
理想的情况下,配置客户机机器,这样登录过程要求用户在登录时提供Kerberos凭证。
Once identity is verified, kerberos provides the two computer with encryption keys for a secure communication session.
一旦身份得到验证,KERBEROS协议给这两台计算机提供密匙,以进行安全通讯对话。
Kerberos assumes that the clocks of all the machines in the realm are closely synchronized within the limit of the allowed time skew.
Kerberos假设域中所有机器的锁在允许的时间相位限制内是紧密同步的。
However, this indicates that there may be a configuration issue preventing the use of Kerberos authentication.
但是,这预示着存在配置问题,并将禁止使用Kerberos身份验证。
Principals and policies are the main administrative entities in a Kerberos setup.
主体(Principals)和策略(policies)是Kerberos设置中的主要管理实体。
This developerWorks article is a very basic primer of Kerberos and a good place to start.
这篇developerWorks文章提供非常基础的Kerberos知识,这是一个很好的出发点。
Kerberos authentication is an Internet standard authentication mechanism.
Kerberos身份验证是一种标准的Internet身份验证机制。
is the Kerberos realm and must be shown in all uppercase letters.
是Kerberos领域,必须全部以大写字母显示。
Finally, we discuss the common problems that readers may encounter when setting up the Kerberos environment.
最后,我们讨论在设置Kerberos环境时可能遇到的一些常见问题。
Kerberos also provides a system for authorization in the form of administering tokens or credentials.
Kerberos还以管理令牌或凭据的形式提供了一种授权系统。
The login module can be interactive and prompt for a principal's Kerberos name or password.
登录模块可以是交互式的并可以提示主体的Kerberos用户名和密码。
In the third section, I'll show how you can generate a cryptographic key used for encryption and decryption in Kerberos messaging.
在第三节中,我将展示如何生成一个用于在Kerveros通信中进行加密和解密的密钥。
They also do not support the GSS-API plug-in authentication method, except Kerberos.
除了Kerberos之外,它们也不支持GSS-API插件身份验证方法。
In practical situations, the NFS domains may be configured with different Kerberos realms (administrative domains).
在实际环境中,可能用不同的Kerberos领域(管理域)配置NFS域。
IP gateways do not support either NTLM or Kerberos authentication.
IP网关不支持NTLM或Kerberos身份验证。
The result of Step 11 is a secret key that the Kerberos client can use to communicate with the Kerberos server.
第11步的结果是一个Kerveros客户机可以用来与Kerberos服务器进行通信的密钥。
