Windows Logon and Authentication Technical Overview

Updated: April 11, 2013

Applies To: Windows 7, Windows Server 2008, Windows Server 2008 R2, Windows Vista

This topic provides links to topics for the Windows Authentication Technical Overview. Windows authentication is the process to prove the authenticity of a user or service attempting to access Windows.

This collection of topics describes Windows authentication architecture and its components.

• Differences in Windows Authentication Between Windows Operating Systems

  Describes the significant differences in the authentication architecture and processes.

• Windows Authentication Concepts

  Describes the concepts on which Windows authentication is based.

  • Security Principals used in Windows Authentication

    Describes the role of security principals and authorization in the authentication process.

  • Security Groups and Windows Authentication

    Describes the role of security groups in the authentication process.

  • Delegated Authentication and Trust Relationships

    Describes the role of trust relationships in the authentication process.

  • Group Policy Settings Used in Windows Authentication

    Describes the use and impact of Group Policies in the authentication process.

  • Credentials Management in Windows Authentication

    Describes the different credential management processes.

• Windows Logon Scenarios

  Summarizes the various logon scenarios.

• Windows Authentication Architecture

  Describes the significant differences in the authentication architecture and processes for Windows operating systems.

  • Security Support Provider Interface Architecture

    Describes the SSPI architecture.

  • Windows Server 2003 Authentication Architecture

    Lists and describes the changes in Windows authentication including logon scenarios and the LSA and SSPI architectures that support Windows authentication for Windows Server 2003 and Windows XP.

  • Windows Server 2008 and Windows Vista Authentication Architecture

    Lists and describes the changes in Windows authentication including logon scenarios and the LSA and SSPI architectures that support Windows authentication for Windows Server 2008 and Windows Vista.

  • Windows Server 2008 R2 and Windows 7 Authentication Architecture

    Lists and describes the changes in Windows authentication including logon scenarios and the LSA and SSPI architectures that support Windows authentication for Windows Server 2008 R2 and Windows 7.

What is not covered

This collection of topics does not cover procedures for designing, implementing, or monitoring your authentication technologies within a Windows environment.

• For design information on Windows authorization strategies, see Designing a Resource Authorization Strategy.

• For design information on Windows authentication strategies, see Designing an Authentication Strategy.

• For design information on Windows public key infrastructure implementation strategies, see Designing a Public Key Infrastructure.

• For configuring and monitoring security, including authentication, in your Windows environment, see:

  • Windows XP Security Guide

  • Windows Vista Security Baseline

  • Windows Server 2003 Security Baseline and the Threats and Countermeasures Guide

  • Windows Server 2008 Security Guide

  • Windows Server 2008 R2 Security Baseline

• For information about auditing logon and authentication events in Windows, see Auditing Security Events.