Login, Kerberos, and SSO Network

Question 1

What does DHCP stand for?

Answer 1

Dynamic Host Configuration Protocol.

Question 2

What is the primary function of DHCP?

Answer 2

To automate the assignment of IP addresses and other network configuration details.

Question 3

What message does a client send to find available DHCP servers?

Answer 3

DHCPDISCOVER.

Question 4

What message does a DHCP server send in response to a DHCPDISCOVER?

Answer 4

DHCPOFFER.

Question 5

What information does a DHCPOFFER message typically include?

Answer 5

IP address, subnet mask, default gateway, and DNS server information.

Question 6

What is the purpose of DNS registration in this process?

Answer 6

To ensure the client’s hostname can be resolved to its IP address by other devices on the network.

Question 7

What does DNS stand for?

Answer 7

Domain Name System.

Question 8

What is Kerberos?

Answer 8

A network authentication protocol that uses tickets for secure authentication.

Question 9

What is the role of the KDC in Kerberos?

Answer 9

The Key Distribution Center issues tickets for authentication.

Question 10

What is a TGT in the context of Kerberos?

Answer 10

Ticket Granting Ticket.

Question 11

How does a client obtain a TGT?

Answer 11

By sending an Authentication Service Request (AS-REQ) to the KDC.

Question 12

What information does a TGT contain?

Answer 12

The user’s Security Identifier (SID), group SIDs (SIDg), and a timestamp.

Question 13

What does AS-REQ stand for?

Answer 13

Authentication Service Request.

Question 14

What message does the KDC send in response to an AS-REQ?

Answer 14

Authentication Service Reply (AS-REP), which includes the TGT.

Question 15

What is the purpose of a service ticket in Kerberos?

Answer 15

To grant access to specific network services.

Question 16

How does a client obtain a service ticket?

Answer 16

By presenting the TGT to the KDC in a Ticket Granting Service Request (TGS-REQ).

Question 17

What is the TGS-REQ?

Answer 17

Ticket Granting Service Request.

Question 18

What message does the KDC send in response to a TGS-REQ?

Answer 18

Ticket Granting Service Reply (TGS-REP), which includes the service ticket.

Question 19

What does SID stand for?

Answer 19

Security Identifier.

Question 20

What does SIDg stand for?

Answer 20

Group Security Identifier.

Question 21

What is the role of an ACL in network security?

Answer 21

An Access Control List defines permissions for accessing resources.

Question 22

How does a service verify a service ticket?

Answer 22

By checking the digital signature of the KDC and validating the ticket.

Question 23

What is Active Directory (AD)?

Answer 23

An LDAP (Lightweight Directory Access Protocol)-compliant directory service that stores user credentials and network information.

Question 24

Why is the timestamp important in Kerberos tickets?

Answer 24

It limits the validity period of the tickets to prevent replay attacks.

Question 25

What happens if the client’s credentials are invalid during the Kerberos login process?

Answer 25

The KDC does not issue a TGT, and the login attempt fails.

Question 26

What does LDAP stand for?

Answer 26

Lightweight Directory Access Protocol.

Question 27

What is the primary function of LDAP?

Answer 27

To access and manage directory information services over a network.