What does Authentication and Authorization mean?
- Authentication: Authentication is when you provide some type of proof to access a computer or a computer resource, and the proof you provide verifies your identity. Usually you authenticate with your user id and password. If the infrastructure is critical, then a user id and password will not be enough and digital certificates are issued and verified by a Certification Authority.
- Authorization: Determining if you have the permission to access some particular type of resource.
- Access: Determine what type of action, based on a permission level, that can be performed on a resource.
What is Windows Authentication?
- Kerberos v5 Protocol: Windows 7 clients and Windows Server 2000 or later uses Kerberos as its default authentication method. Kerberos(protocol)
- NTLM (NT Lan Manager): Used to provide backward compatibility with pre-Windows 2000. NTLM is a suite of Microsoft security protocols that provide authenticity, integrity, and confidentiality to users. NTLM
- Certificates: Rely on a third party to verify who you are (PKI Infrastructure). Public-key_infrastructure.