A Kerberos principal is a unique identity to which Kerberos can assign tickets.
Kerberos defines two different types of accounts (or Principals):
In a Microsoft environment, they would be named:
Traditionally, a principal is divided into three (components|parts):
primary[/instance][@REALM]
where:
Principals can have an arbitrary number of (components|parts). Each (components|parts) is separated by a component separator, generally `/'.
HTTP/[email protected]
HOST/[email protected]