When a DC gets a request to authenticate a user account, how does that work?
Hello,
I'm still trying to figure out the authentication process of a DC. So, what is the correct process for authentication?
If a DC gets a request to authenticate X user. it will first check its own domain for this X user and if not found, will would happen? Will the DC check a different domain it has a trust relationship with?
I would appreciate if anyone could explain this process to me. I've seen some articles in internet but still don't quite get the specific and detailed process. If anyone has any article I could read, it would be much appreciated as well.
Thanks,
I'm still trying to figure out the authentication process of a DC. So, what is the correct process for authentication?
If a DC gets a request to authenticate X user. it will first check its own domain for this X user and if not found, will would happen? Will the DC check a different domain it has a trust relationship with?
I would appreciate if anyone could explain this process to me. I've seen some articles in internet but still don't quite get the specific and detailed process. If anyone has any article I could read, it would be much appreciated as well.
Thanks,
Aard Vark
Microsoft have documented the authentication process here.
when you login you supply the domain AND the username i.e.
domain\usernam
It only checks that domain
domain\usernam
It only checks that domain
ASKER
Thank you for your responses. Now, what happens when an account or machine is not appended to any domain? The kerberos would still be in this authentication process?
Example: a computer that is not in the domain logs in the enterprise network and then logs into any applications or website (lets use sharepoint which is an MS app). The sharepoint will request for a credential and then the user types in a username and password. This case changes the authentication process, doesn't it?
Example: a computer that is not in the domain logs in the enterprise network and then logs into any applications or website (lets use sharepoint which is an MS app). The sharepoint will request for a credential and then the user types in a username and password. This case changes the authentication process, doesn't it?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you very much! I appreciate the time you took to reply. To answer your question, yeah i'm learning here and there, trying to read as much as I can. Sorry if the questions I submitted were not within the scope of EE.
Have a great day!
Have a great day!
The questions are fine, I just mean the content is so vast depending how deep you want to go you could never cover it here :)