By default, the Kerberos client uses RSA_MD5 as the checksum algorithm for communicating with the KDC and the application server. Most servers support this type of checksum. If your server doesn't support the specified checksum, it will issue an error message.
Kerberos servers may refer to checksums by their hexadecimal equivalent.
The Kerberos client supports the following checksum types:
Checksum Type |
Hexadecimal Equivalent |
Remarks |
---|---|---|
CRC32 |
01 |
|
RSA_MD4 |
02 |
HP DCE security and application servers use the RSA_MD4 checksum type. |
RSA_MD4_DES |
03 |
|
DESCBC |
04 |
|
RSA_MD5 |
07 |
|
RSA_MD5_DES |
08 |
|
SHA1 |
09 |
|
HMAC_SHA1_DES3 |
0c |
|