This topic explains how DCE security authenticates a user/client. DCE authentication basically consists of two successive procedures:
1. Acquisition by the security client of a ticket-granting ticket (TGT) for the user.
2. Acquisition by the security client of a privilege-ticket-granting ticket (PTGT) for the user.
These procedures are described in the following two subtopics.
More:
How the Client Obtains a TGT for the User
How the Client Obtains a PTGT for the User
Identities in a Delegation Chain