nPhase 1: C gets a Ticket-Granting Ticket
1.C sends a request to the KDC for a “ticket-granting ticket”
(TGT)
nA TGT is a ticket used to talk to
the special ticket-granting service
nA TGT is relatively long-lived
(~8-24 hours typically)
nC č KDC: C, TGS, NC
nSent in the clear!