An IT administrator is configuring a new server that will host sensitive company data and requires secure authentication mechanisms. The company has an Active Directory infrastructure in place. Which authentication method should the administrator use to ensure that time-sensitive tickets are granted for authenticated access to the server's resources?
Kerberos is the preferred authentication method in an Active Directory environment as it uses time-sensitive tickets that are encrypted and help to prevent replay attacks. The use of tickets ensures that the user's credentials are not repeatedly passed over the network during the ticket's lifetime, which provides a secure way to access network resources. 'RADIUS' is primarily used for remote network access rather than internal authentication. 'TACACS+' is another authentication method but is usually associated with Cisco network devices, not Active Directory environments. Lastly, 'NTLM' is a legacy authentication protocol considered less secure compared to Kerberos in Windows domains due to its lack of mutual authentication and weaker encryption.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are time-sensitive tickets in Kerberos?
Open an interactive chat with Bash
How does Kerberos prevent replay attacks?
Open an interactive chat with Bash
What is the role of Active Directory in Kerberos authentication?