| DelegationPermission | This class is used to restrict the usage of the Kerberos delegation model, ie: forwardable and proxiable tickets. | code | html |
| JavaxSecurityAuthKerberosAccessImpl | code | html | |
| KerberosKey | This class encapsulates a long term secret key for a Kerberos
principal. All Kerberos JAAS login modules that obtain a principal's password and generate the secret key from it should use this class. |
code | html |
| KerberosPrincipal | This class encapsulates a Kerberos principal. | code | html |
| KerberosTicket | This class encapsulates a Kerberos ticket and associated information as viewed from the client's point of view. | code | html |
| KeyImpl | This class encapsulates a Kerberos encryption key. | code | html |
| KeyTab | This class encapsulates a keytab file. | code | html |
| KrbDelegationPermissionCollection | code | html | |
| KrbDelegationPermissionCollection | Specific PermissionCollection for storing DelegationPermissions | code | html |
| KrbServicePermissionCollection | code | html | |
| KrbServicePermissionCollection | Specific PermissionCollection for storing ServicePermissions | code | html |
| ServicePermission | This class is used to protect Kerberos services and the credentials necessary to access those services. | code | html |
The Kerberos network authentication protocol is defined in RFC 4120. The Java platform contains support for the client side of Kerberos via the org.ietf.jgss package. There might also be a login module that implements LoginModule to authenticate Kerberos principals.
You can provide the name of your default realm and Key Distribution Center (KDC) host for that realm using the system properties java.security.krb5.realm and java.security.krb5.kdc. Alternatively, you can provide an MIT style configuration file called krb5.conf in <java-home>/lib/security. If you place this file elsewhere, you can indicate that location via the system property java.security.krb5.conf.
@since JDK1.4