posted 22 years ago
How can we perform Authorization through Kerberos because when user get the ticket(TGT) from Authentication Server(AS).TGT includes client identity and list of services for which he is allowed to access.My question is How kerberos does this Authorization(means How kerberos gives access permissions to a user for various services).Is it using any aceess control list in which it is defined that a particular user is allowed to access a particular service,If this is then how can we write the ACL's.