Configuring Kerberos Snooping
Kerberos authentication or ticketing is used by Microsoft's Active
Directory and by various Unix systems (including Linux and MAC OSX). The Kerberos
snooping feature in the ExtremeXOS software collects identity information from Kerberos
Version 5 traffic. This feature does not capture information from earlier versions of
Kerberos.

Note
We recommend that you enable CPU DoS protect in combination with this feature to make sure the CPU is not flooded with mirrored Kerberos packets in the event of a DoS attack on Kerberos TCP/UDP ports. If the rate limiting capability is leveraged on capable platforms, it is applied on CPU mirrored packets.Kerberos snooping is enabled when you enable identity management.

Note
Kerberos identities are not detected when both server and client ports are added to identity management.