Kerberos and LDAP Flashcards Preview

Security+ > Kerberos and LDAP > Flashcards

Flashcards in Kerberos and LDAP Deck (10):
1

How does Kerberos help prevent MitM and replay attacks?

With mutual authentication and time synchronization (or expiration) with tickets

2

In which environments is Kerberos used?

Unix and Windows AD

3

Which part in Kerberos issues ticket-granting-tickets and other tickets?

The Key Distribution Center (KDC) or TGT server

4

In Kerberos, why is time synchronization important?

In Kerberos, systems must be synchronized within five minutes of each other in order to timestamp tickets to ensure that they expire correctly.

This helps prevent a replay attack, as an attacker has a limited amount of time to use a ticket.

5

How does a user in Kerberos receive a resource ticket?

The user uses his/her ticket-granting-ticket to receive a ticket to access each resource.

6

What is the function of LDAP?

Lightweight Directory Access Protocol specifies formats and methods to query directories.

7

If an object is identified as "CN=Users," or "DC=GetCertifiedGetAhead," which protocol are you using?

LDAP

8

You need to secure LDAP transmissions. Which protocol do you use?

Secure LDAP (establishes connections with TLS)

9

Which LDAP standard is current?

LDAPv3

10

LDAPv2 uses which transport encryption protocol? Which one does LDAPv3 use?

LDAPv2 uses SSL, LDAPv3 uses TLS.