What is the Principal of a user in Authentication?

About

A principal in security is the unique identifier of an identity ie:

  • object,
  • service,
  • person (users),
  • groups,
  • domains,
  • service accounts.

The identity key or principal is typically an account’s user name such as:

Example

  • A principal for a simple user/password based auth
{
 "username": "alice"
}
1)
Subject ref




Discover More
Identity (Subject)

An identity is the identifier of an entity. (id + entity = identity) The key is a mathematical entity, while the owner – and the connection between owner and key – are not. identityidentifier (key)...
Kerberos - Principal (Account)

A Kerberos principal is a unique identity to which Kerberos can assign tickets. Kerberos defines two different types of accounts (or Principals): User Principal Name (UPN), and Service Principal...
What is Authorization (AuthZ)? Identity and Access Management

After a user has been authenticated, the next critical aspect of security is ensuring that the user can do and see what they are authorized to do and see. Authorization is the process of validating what...
What is the LDAP Distinguished Name (DN)?

DN is an acronym for Distinguished Name, a hierarchical unique identifier for an entry in the ldap tree. It is supposed to globally uniquely identify a given entry like a certificate. The Distinguished...



Share this page:
Follow us:
Task Runner