The following are extremely useful resources for understanding the Active Directory Authentication & Logon.
Authentication & Logon
o Digest Authentication Technical Reference
o Interactive Logon Technical Reference
o Kerberos Authentication Technical Reference
- What Is Kerberos Authentication?
- How the Kerberos Version 5 Authentication Protocol Works
- Kerberos Authentication Tools and Settings
o Overview of the Kerberos Protocol
o Kerberos Components in Windows 2000
o Introduction (Kerberos Protocol Transition and Constrained Delegation)
o Authenticating Web Application Users
o Windows Server 2003 Kerberos Extensions
o Sample Scenario Source Files
o Summary (Kerberos Protocol Transition and Constrained Delegation)
o Conclusion (Kerberos Protocol Transition and Constrained Delegation)
- Kerberos for the Busy Admin
- Understanding Kerberos Double Hop
- Kerberos errors in network captures
- [MS-NLMP]: NT LAN Manager (NTLM) Authentication Protocol
- Authorization and Access Control Technologies
o Security Descriptors and Access Control Lists Technical Reference
o Access Tokens Technical Reference
o Permissions Technical Reference
o Security Principals Technical Reference
o Security Identifiers Technical Reference
o Interactive Logon Tools and Settings
o User Profiles Overview in User Data and Settings Management
o Enhancements to User Profiles in Windows Server 2003 and Windows XP
o How to Configure a Roaming User Profile
o Security Considerations when Configuring Roaming User Profiles
o Best Practices for User Profiles
o How to Configure Folder Redirection
o Security Considerations when Configuring Folder Redirection
o Best Practices for Folder Redirection in User Data and Settings Management
o Related Technologies: Offline Files and Synchronization Manager
o Common Scenarios for IntelliMirror User Data and Settings Features
o Appendix: Group Policy Settings for Roaming User Profiles
o Related Links for User Data and Settings Management
- Problems with Kerberos authentication when a user belongs to many groups (Article ID: 327825)
- Users who are members of more than 1,015 groups may fail logon authentication (Article ID: 328889)
- MaxTokenSize and Windows 8 and Windows Server 2012
Recent Comments