A network administrator needs to implement a network authentication protocol that provides single sign-on (SSO) capabilities for users accessing various services on the corporate network. The protocol must use a trusted third-party server to issue encrypted tickets for authentication. Which of the following protocols BEST meets these requirements?
The correct answer is Kerberos. Kerberos is a network authentication protocol specifically designed to use tickets for authenticating to services. It uses a trusted third party, the Key Distribution Center (KDC), to issue a ticket-granting ticket (TGT) upon initial login. This TGT is then used to request service tickets for other resources on the network, providing a single sign-on experience without sending passwords over the network repeatedly. TACACS+ and RADIUS are AAA (Authentication, Authorization, and Accounting) protocols but do not operate on a ticket-granting system like Kerberos. WPA3 is a security protocol used to secure wireless networks, not a general-purpose authentication protocol for network services.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Kerberos and how does it work?
Open an interactive chat with Bash
What is a Ticket Granting Ticket (TGT)?
Open an interactive chat with Bash
What are the advantages of using a ticket-based authentication system like Kerberos?