The server should be sending a ticket, an encryption of the serial number, to the client, and expecting that back. It should be salted by the client id.
The server should be sending a ticket, an encryption of the serial number, to the client, and expecting that back. It should be salted by the client id.