Export (0) Print
Expand All
This topic has not yet been rated - Rate this topic

1.3.4 Compound Identity

KILE extends FAST to support compound identity in the following manner. The client sends a compound identity TGS-REQ which is a FAST TGS-REQ by using explicit armoring with the computer's TGT. When a KDC receives a compound identity TGS-REQ for an application server which supports compound identity, then the KDC adds the computer’s authorization data to the privilege attribute certificate (PAC). By providing authorization data for the computer in the PAC, the application server can create a compound identity for the caller which is a combination of the user's and computer's authorization data.

Did you find this helpful?
(1500 characters remaining)
Thank you for your feedback
© 2014 Microsoft. All rights reserved.