Abstract

In today’s cyber-world, one of the most widely used security terms is the security of user accounts and their proper authentication process. We are in a digital age where every user of information systems has a digital identity [1]. If a particular user wants to access a particular service, he has to authenticate himself first and only on the basis of that the user will be granted rights to the service. A 2014 study says that the average user of web services had approximately 25 web accounts [2]. However, it is now estimated that there are approximately 80 web accounts per user, and some form of service identity authentication must be implemented for each of them [3]. In medium and large enterprise computer networks, services are used to centrally manage users, for example, using a Windows server role - “Active Directory Domain Services”. This role uses the “Kerberos” authentication protocol.

Keywords:Active directory domain services; Ticket granting ticket; Golden ticket; Kerberos; “krbtgt” account