Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
Kerberos authentication in Windows domains
Rating: 4.1 out of 5(87 ratings)
676 students

Kerberos authentication in Windows domains

Understand, configure, troubleshoot, secure and monitor Kerberos authentication protocol in Windows domains.
Last updated 6/2022
English

What you'll learn

  • Improve Windows domain and service security by using Kerberos authentication.
  • Learn Kerberos terminology, concepts and benefits.
  • Understand how Kerberos authentication works and why it is preferred authentication protocol.
  • Configure Kerberos authentication in a secure way for multi-tier applications.
  • Resolve Kerberos authentication problems using Network Monitor and analytical thinking.
  • Secure and monitor Kerberos infrastructure and communications.

Course content

8 sections64 lectures3h 14m total length
  • Welcome1:33
  • Introduction to Kerberos1:56
  • Kerberos advantages1:06
  • Kerberos ticketing system1:08

    Explore how Kerberos authenticates users with a username and password hash to issue a 10-hour TGT stored locally, then obtain a service ticket from the KDC.

  • Symmetric encryption1:17
  • Encryption prerequisites0:51
  • Kerberos terminology1:02

    Explore Kerberos terminology: user and service principals. See how Kerberos key distribution center authenticates clients, issues ticket granting tickets and service tickets, and handles SPNs, UPNs, and the KRBTGT account.

  • Kerberos secret keys2:15

    Explore how Kerberos uses short-term and long-term keys, user, system, and service keys, and how session keys and tickets, as TGTs and service tickets, enable authentication across trusted domains.

  • Kerberos cache0:53
  • Messages, tickets and encryption algorithms4:51

    Explore Kerberos messages, tickets, and encryption algorithms between clients, KDC, and services, including nonce and session keys. Understand how delegation, pre-authentication data, and pac validation influence authentication in Windows domains.

  • Introduction to Kerberos review

Requirements

  • This is expert level course with focus on Kerberos infrastructure and authentication.
  • You should have experience with Windows server infrastructure and Active Directory.
  • You should be familiar with communication protocols and security standards.
  • Knowledge of Microsoft IIS, SQL Server and Exchange Server will help a lot.

Description

The course provides refined, standardized and verified information that cannot be found in any other single source publicly available. It does not contain engaging labs or tasks, but only demonstrations. The content is heavily condensed and it will take significantly more than 3 hours to absorb it. You will need a high level of motivation to be able to complete the course and digest the information so that it can be applied practically. At the end of each section, there is a review with multiple-choice questions and explanations. Download and use the course transcript instead of taking notes and follow the references for digging deeper in topics of interest.


The course will introduce you to Microsoft implementation of Kerberos authentication protocol and its benefits, terminology, concepts, and service infrastructure. It will then explain how Kerberos works through detail and step-by-step examination of the ticketing system and communication messages in various configurations using flow diagrams and network traffic analyzer to get better understanding of the processes. Understanding how Kerberos works will help you with troubleshooting complex problems and reduce stress.


We will walk through the configuration of the most common Microsoft applications such as IIS, SQL, Exchange, and file servers, including multi-hop setups and mid-tier service integration, discuss impersonation, review delegation options, and see why some of these options are not so secure. We will also learn how to Kerberize non-Windows services so they can benefit from Kerberos security and convenience of SSO.


Then we will dive into troubleshooting issues, go through a checklist so we don’t miss most common misconfigurations and we will look into specific troubleshooting examples. We will also examine Kerberos vulnerabilities and the most common attacks, such as Kerberoasting and Golden and Silver Tickets and talk about how to prevent and detect compromise. Finally, we will look into relevant monitoring and alerting options and learn how to use these for detecting malicious activity.

Who this course is for:

  • This course is designed for highly motivated Windows system administrators, .Net developers, database administrators and cybersecurity specialists willing to deepen their knowledge and understanding of authentication protocols.
  • Anyone interested in authentication protocols will benefit from good understanding of Kerberos, but will reqiure a high level of motivation to complete the course.