what is the difference between radius and kerberos?
slice
2006-11-30 09:20:15 UTC
both are used to authenticate user access to services. what features make one more applicable to which applications?
Seven answers:
2006-11-30 09:28:54 UTC
Radius is a half-diameter of a circle, or a portion of the curve, whereas Kerberos is a city located in a live volcano in the Crappian Sea.
?
2016-11-04 16:24:10 UTC
Radius Vs Diameter Protocol
networkmaster
2006-11-30 12:08:40 UTC
RADIUS is a full Authentication, Authorization and Accounting (AAA) protocol and Kerberos is really zooming in on the Authentication piece of that using private key crypto and mutual authentication.
From the reference below:
RADIUS is a client-server authentication and authorization access protocol used by the Network Access Server (NAS) to authenticate users attempting to connect to a network device. The NAS functions as a client, passing user information to one or more RADIUS servers. The NAS permits or denies network access to a user based on the response it receives from one or more RADIUS servers. RADIUS uses UDP for transport between the RADIUS client and server.
Kerberos is a client-server based secret-key network authentication method that uses a trusted Kerberos server to verify secure access to both services and users. In Kerberos, this trusted server is called the key distribution center (KDC). The KDC issues tickets to validate users and services. A ticket is a temporary set of electronic credentials that verify the identity of a client for a particular service.
antirion
2006-11-30 13:19:23 UTC
Cutting through all the technical lingo... Use a RADIUS server/servers in a large enterprise where you want centralized authentication for many, many different systems. Otherwise, it's not worth the bother.
2016-04-08 10:22:26 UTC
For the best answers, search on this site https://shorturl.im/axNBG
radius is from the middle of the circle to the edge, whereas diameter is from one end to the other going through the middle.
luxorion
2014-07-22 06:00:48 UTC
These concepts are used in what we call IT domain security. RADIUS is a server used to authenticate computers and devices (and thus users too) remotely connected to a (private) network. Usually it uses a LDAP directory (a protocol and database) to get the user profile (roles and connected devices) to grant him access and Kerberos to ensure a secure authentication thanks to cryptographic techniques.
2016-08-23 15:44:01 UTC
Interesting thread!
ⓘ
This content was originally posted on Y! Answers, a Q&A website that shut down in 2021.