kerberos
Contents
kerberos¶
Event fields used to define/normalize Kerberos Ticket Granting Service and Kerberos Ticket Granting Tickets. For certificate information within Kerberos see the ./x509_and_certificates.md
Attributes¶
Name |
Type |
Description |
Sample Value |
|---|---|---|---|
krb_service_name |
string |
the name of the account or computer for which the TGS ticket was requested |
|
krb_ticket_encryption_type |
string |
the cryptographic suite that was used for issued TGS. |
|
krb_ticket_options |
string |
this is a set of different ticket flags in hexadecimal format. |
|
krb_ticket_pre_auth_type |
integer |
the code number of pre-Authentication type which was used in TGT request. |
|
krb_ticket_request_type |
string |
Request type - Authentication Service (“AS”) or Ticket Granting Service (“TGS”) |
|
krb_ticket_status |
string |
hexadecimal result code of TGS issue operation. |
|