2.1 Transport

The Kerberos V5 protocol uses UDP and TCP for transport ([RFC4120] section 7.2). KILE SHOULD use UDP by default; however, if the message size exceeds a specific configurable value (message size threshold), TCP SHOULD be used.<2> The threshold applies to AS and TGS messages. They do not apply to AP exchange messages because the transport is controlled by the application protocol.

KILE MUST have a working DNS infrastructure. KILE SHOULD NOT use the Internet Protocol (IP) addresses of the KDCs. For more information about DC SRV records registration, see [MS-ADTS] section 6.3.2.3.

Show: