Apple G0442 manual Single sign-on using Kerberos, Directory support for Windows clients

Page 15

Technology Overview

15

Mac OS X Server

 

Server Admin makes it easy to set up replication services for Open Directory. Replica directories automatically synchronize with the master directory, so user accounts and authentication information remain consistent across distributed networks.

Single sign-on using Kerberos

Open Directory integrates an authentication authority based on MIT’s Kerberos technology to provide users with single sign-on access to secure network resources. Using strong Kerberos authentication, single sign-on maximizes the security of network resources while providing users with easier access to a broad range of Kerberos-enabled network services. For services that have not yet been “Kerberized,” the integrated SASL service automatically negotiates the strongest possible authentication protocol.

Directory support for Windows clients

In Mac OS X Server, Apple has integrated the NT Domain services of the popular open source Samba 3 project with Open Directory, making it possible to host NT Domain services. You can set up Mac OS X Server as a Primary Domain Controller (PDC) or Backup Domain Controller (BDC) for your network, allowing Windows users to authenticate against Mac OS X Server directly from their PC login windows.

NT Domain services also enable Mac OS X Server to host roaming proles and network home directories for Windows clients. Now any user in your directory can securely log in and access the same user account, authentication, home directory, and network resources from either a Mac or a Windows system. These capabilities make Mac OS X Server ideal for replacing aging Windows NT or Windows 2000 servers, with- out requiring businesses to transition to an expensive Active Directory infrastructure.

Page 14 Page 16
Image 15
Page 14 Page 16
Contents
Technology Overview August Mac OS X ServerContents Open source made easy IntroductionTechnology Overview Xserve and Xserve RAID New in VersionTechnology Overview Operating System Fundamentals UNIX-Based FoundationBit Computing Directory Integration Integration with directory servicesAdvanced BSD Networking Architecture Robust SecurityHigh Availability Integrated Management Tools Server AdminWorkgroup Manager Dening users, groups, and computersUse Workgroup Manager to Dening preferences for Mac OS X clients Technology Overview Open Directory Server Why directory services?Single sign-on using Kerberos Directory support for Windows clientsTechnology Overview Mac OS X Server Support for mixed-platform networks File and Print ServicesCore mail services Mail ServicesFile system access controls Cups print servicesProtection against junk mail and viruses Additional standards-based mail solutions Getting started with Apache Hosting dynamic contentWeblog services Web HostingJ2EE architecture Security and authenticationApplication services Enterprise ApplicationsWebObjects Media StreamingJBoss application server Support for industry standardsPreparing content for streaming Easy-to-use management toolsBroadcasting live events IChat Server Software Update ServerUse NetBoot to NetBoot and NetInstallManaging client updates NetBootUse NetInstall to NetInstallApple Remote Desktop Networking and VPNWindows network infrastructure VPN serverDistributed Computing Product Details Package ContentsApple Maintenance Program AppleCare Technical Support System RequirementsTraining and Certication Open Source Projects Technology Overview Mac OS X Server Technology Overview Mac OS X Server Technology Overview Mac OS X Server For More Information Additional Resources