Export (0) Print
Expand All
Collapse the table of content
Expand the table of content
Expand Minimize

Kerberos Key Distribution Center (System Services for the Windows Server 2003 Family and Windows XP Operating Systems)

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Service Name: Kdc

Executable Name: lsass.exe

Log On As: LocalSystem

Description: Enables users to log on to the network using the Kerberos v5 authentication protocol.

As in other implementations of the Kerberos protocol, the KDC is a single process that provides two services:

  • Authentication Service

    This service issues ticket granting tickets (TGTs) for connection to the ticket-granting service in its own domain or in any trusted domain. Before a client can ask for a ticket to another computer, it must request a TGT from the authentication service in the clients account domain. The authentication service returns a TGT for the ticket granting service in the target computers domain. The TGT can be reused until it expires, but first access to any domains ticket-granting service always requires a trip to the authentication service in the clients account domain.

  • Ticket-Granting Service (TGS)

    This service issues tickets for connection to computers in its own domain. When clients want access to a computer, it must request a TGT, and ask for a ticket to the computer. The ticket can be reused until it expires, but first access to any computer always requires a trip to the ticket-granting service in the target computers account domain.

If this service is stopped, users will be unable to log on to the domain and access services.

Available on: Windows Server 2003, Standard Edition; Windows Server 2003, Enterprise Edition; Windows Server 2003, Datacenter Edition and Windows Server 2003, Web Edition.

Installed through: Default operating system installation

Startup type: Disabled

Service status: Stopped

This service depends on the following system components:

Remote Procedure Call

AFD Networking Support Environment

The following system components depend on this service: None

IP Port Numbers used:

TCP: 88, 544

UDP: 88, 464

Was this page helpful?
(1500 characters remaining)
Thank you for your feedback

Community Additions

ADD
Show:
© 2015 Microsoft