3.2.6.1 Verifying authentication status

A higher-layer protocol can check whether a given X.509 certificate is present in the table of peer certificates. Given a X.509 certificate, if the table contains an entry mapping the certificate to a Kerberos principal, the server MUST return TRUE. Otherwise the server MUST return FALSE.