I am dealing with making kerberized connections to databases. I think I understand the basics of kerberization. The user requests the "Authentication Server" part of KDC to get TGT (Ticket Granting ticket) and then when the user needs to access a service which needs the user to authenticate, the user sends the TGT to another part of KDC, which provides the "service ticket" after validating that the user is allowed to access the service. The user then forwards this "Service ticket" to the server and gets the service.
I have also heard of the idoms "kerberos login" and "kerberos password". I don't quite understand what exactly they mean and refer to?
Any pointers please?
Thanks,