2.2.6 KERB-AD-RESTRICTION-ENTRY
The KERB-AD-RESTRICTION-ENTRY structure SHOULD<8> specify additional restrictions for the client. Its structure is defined using ASN.1 notation and the syntax is as follows:
-
KERB-AD-RESTRICTION-ENTRY ::= SEQUENCE { restriction-type [0] Int32, restriction [1] OCTET STRING }
restriction-type: MUST be set to 0x00000000.
restriction: An LSAP_TOKEN_INFO_INTEGRITY structure (section 2.2.5) that contains the integrity information for the client.