Kerberos Class

  • ID:  Microsoft.Windows.RemoteAccess.2012.Class.Kerberos
  • Description:   
  • Class Hierarchy: 
    Entity
    Logical Entity
    Application Component
    Windows Application Component
    Kerberos

  • Attributes:  Public, Hosted
Login
A network authentication service (kpssvc) is not available.  This service helps in authenticating DirectAccess clients when they connect to the  corporate network via DirectAccess. Ports required for Kerberos authentication are blocked. Kerberos authentication is required to authenticate clients using Kerberos proxy on this server. \ For clients to communicate with the proxy, firewalls must allow HTTPS traffic (port 443 by default). The Kerberos proxy must be able to send Kerberos authentication protocol traffic via port 88, and Kerberos change password protocol traffic via port 464 to domain controllers. Kerberos unkown error The certificate binding for HTTPS Port 443 has changed. This certificate is used to authenticate remote clients with Kerberos. Without the correct certificate,  authentication of remote clients connecting via DirectAccess will not work as expected. The certificate used for Kerberos authentication is not valid. The certificate used for Kerberos authentication is missing. Kerberos DirectAccessServer

Download diagram as a Visio file

Properties

Display Name Description
Display Name Display name of monitoring object.

Discovered By

Name Description
RemoteAccessServerPSDiscovery  

Relations

Health Source
NameClassType
Entity Watched By Perspective Entity Reference

Health Target
NameClassType
DirectAccessServer.Hosts.Kerberos Kerberos Hosting

Class Knowledgebase

Summary

DirectAccess use an HTTPS based Kerberos proxy for client authorization. Client authentication requests are sent to a Kerberos proxy service running on the DirectAccess server. The Kerberos proxy then sends Kerberos requests to Domain Controllers on behalf of the client.

This way, Windows Server 2012 DirectAccess makes PKI deployment optional and simplifies configuration and management..

External References
This class does not contain any external references.

See Also for Windows Routing and Remote Access Service (RRAS) Management Pack


Downloads for Windows Routing and Remote Access Service (RRAS) Management Pack

AZURE OPTIMIZATION ASSESSMENT GET STARTED
MIGRATION TO AZURE GET STARTED
SYSTEM CENTER MIGRATION TO AZURE GET STARTED
MIGRATION TO AZURE FOR SQL AND WINDOWS 2008 GET STARTED