LDAP
Logon
 Password Policy
- IETF password policy support (Tivoli/IBM
DS 5.X)
- RACF
password policy and password
change
support
- Sun One/Netscape DS policy support
- Lotus Domino support as primary user
management platform
SSL/TLS
support (Server, Client PC
or Client Certificates)
SmartCard support
SASL support (Digest MD5, SSL
Client
Authentication)
Fully
compatible to standard UNIX-LDAP
Object Classes:
posixAccount, posixGroup,
shadowAccount
SignOn Proxy Support (automatic
password synchronization with Windows
2008,
Windows 2012, ADS, Samba, LDAP)
Flexible
failover and load balancing
support through
DNS-SRV Records
|
|
Mobile Support
Local
user accounts can be created on the
workstation
after successful logon, afterwards
a local logon
is possible without reaching the
primary authentication
platform.
An expire
time can be set for all local
accounts, so
a logon to the primary
authentication platform has
to occour
at least at fixed maximum intervals.
SSO
SSO
support for Lotus Notes incl.
password change
for the User-ID on Linux
and Windows
Extensive
SSO-API for the easy integration
of in-house
developed applications
Web applicatios
Further Features
Scripts
(specifically for systems
management)
Group
Mapping (local group memberships are
assigned
to the user according to group
membership in
the primary authentication
domain [LDAP])
Easy to install and configure
using a software
distribution system
Adaptions
Necessary
adaptations to customer-specific
requirements
are possible and will be carried
out quickly
and efficiently
|
LDAP in heterogeneous networks
