Active Directory Security Tip #12: Kerberos Delegation

News

I have mentioned in several presentations that Kerberos delegation is impersonation. Kerberos delegation is used when a service (ex. web server) needs to impersonate a user when connecting to a resource (ex. database). There are a 4 types of Kerberos delegation: Unconstrained delegation should be converted to constrained delegation due to security concerns. Any Kerberos … Continue readingActive Directory & Azure AD/Entra ID SecurityRead More