Kerberos Authentication with AD server for iOS devices connecting over internet RRS feed

  • Question

  • Hello,

    I am new to Kerberos authentication and Windows AD setup, although have done some basic reading.

    I am working on a project where an iOS7 device needs to authenticate using Kerberos (with AD server).

    My understanding is Kerberos Client and the server needs to be in the same domain for authentication to happen successfully.

    High level Scenarios :

    1. Device could access Corporate wifi which might have access to KDC server

    2. Device could be part of internet which would not have direct access to KDC server 

    What is the best practice architecture when both above scenarios need to be supported?  Is KDC Proxy the only way OR there are alternates available?

    Any reference link with specific example would be a great help.  Thanking you all in advance.


    - KRiS

    • Changed type KRiS5101 Monday, July 22, 2013 6:32 PM
    Monday, July 22, 2013 5:45 PM