Checksum Types

By default, the Kerberos client uses RSA_MD5 as the checksum algorithm for communicating with the KDC and the application server. Most servers support this type of checksum. If your server doesn't support the specified checksum, it will issue an error message.

Kerberos servers may refer to checksums by their hexadecimal equivalent.

The Kerberos client supports the following checksum types:

Checksum Type

Hexadecimal Equivalent

Remarks

CRC32

01

 

RSA_MD4

02

HP DCE security and application servers use the RSA_MD4 checksum type.

RSA_MD4_DES

03

 

DESCBC

04

 

RSA_MD5

07

 

RSA_MD5_DES

08

 

SHA1

09

 

HMAC_SHA1_DES3

0c