Active Directory is required for default NTLM and Kerberos implementations.Īuthentication techniques range from a simple logon, which identifies users based on something that only the user knows - like a password, to more powerful security mechanisms that use something that the user has - like tokens, public key certificates, and biometrics. Active Directory Domain Services is the recommended and default technology for storing identity information (including the cryptographic keys that are the user's credentials). Storing the cryptographic keys in a secure central location makes the authentication process scalable and maintainable. The server side of the authentication exchange compares the signed data with a known cryptographic key to validate the authentication attempt. Typically, identity is proven by a cryptographic operation that uses either a key only the user knows - as with public key cryptography - or a shared key. In a networking context, authentication is the act of proving identity to a network application or resource. When you authenticate a service or person, the goal is to verify that the credentials presented are authentic.
When you authenticate an object, the goal is to verify that the object is genuine. Feature descriptionĪuthentication is a process for verifying the identity of an object, service or person. This navigation topic for the IT professional lists documentation resources for Windows authentication and logon technologies that include product evaluation, getting started guides, procedures, design and deployment guides, technical references, and command references. Applies to: Windows Server 2022, Windows Server 2019, Windows Server 2016
0 kommentar(er)
