2.5 Use Cases

The following sections describe a set of use cases that span the functionality of Authentication Services.

Use case group	Use case(s)
Interactive Logon (section 2.5.3)	Interactive Domain Logon: Service Ticket for Client Computer (section 2.5.3.1.1)
Network Logon (section 2.5.4)	Client Authentication (section 2.5.4.1.1), Server Authentication (section 2.5.4.1.2), Mutual Authentication (section 2.5.4.1.3), Delegation of Authentication (section 2.5.4.1.4), and Credential Delegation (section 2.5.4.1.5).
Auxiliary (section 2.5.5)	Authenticate a User or Computer Identity to a Kerberos Authentication Server (section 2.5.5.1), Negotiate Authentication Protocol (section 2.5.5.2), and S4U2self Mechanism: Get a Service Ticket for a Front-end Server (section 2.5.5.3). These use cases support the other use cases that are listed in this table and in the following tables.
Security Services (section 2.5.6)	Data Origin Authentication (Signing) (section 2.5.6.1) Data Confidentiality (Sealing) (section 2.5.6.2)

The use cases listed in the following table apply to a multi-domain environment in a single forest.

Use case group	Use case(s)
Interactive Logon (section 2.5.3)	Interactive Domain Logon: Service Ticket for Client Computer (section 2.5.3.2.1)
Network Logon (section 2.5.4)	Client Authentication (section 2.5.4.2.1)

The use cases listed in the following table apply to a cross-forest environment.

Use case group	Use case(s)
Network Logon (section 2.5.4)	Client Authentication (section 2.5.4.3.1)