LDAP in Heterogeneous Networks
Unify user management and authentication across diverse platforms with a central, vendor-independent LDAP directory.
The Future is Independent
Comtarisa’s product portfolio, refined over 25 years of successful customer projects, revolves around LDAP at its core.
In an era of frequent mergers and rapidly evolving system landscapes, large corporations and public organizations increasingly rely on platform and vendor independence. Managing users across a mix of Windows, Linux, Unix, and other systems creates complexity and security challenges. A central Lightweight Directory Access Protocol (LDAP) directory is the premier solution to streamline administration, enhance security, and eliminate the need for expensive future investments.
Comtarsia's SignOn Solutions are cost-effective, powerful tools designed to seamlessly integrate your entire network of workstations and resources into a unified LDAP-managed directory.
Key Advantages of Centralized LDAP
-
Unified User Management
Administer all user accounts, groups, and permissions from a single, centralized platform.
-
Enhanced Security & SSO
Enable secure Single Sign-On for web, Windows, and legacy applications, reducing password fatigue and risk.
-
Smart Card & PKI Integration
Provide comfortable and highly secure logon to workstations and resources via Smart Cards and Tokens.
-
Investment Protection
Investments in a highly available LDAP Directory also benefit Windows workstation authentication and resource access.
Complete Integration of Windows & Linux
Comtarsia's solutions bridge the gap, allowing you to integrate Windows Active Directory, Samba, Linux, Unix, and Domino resources into a single, LDAP-managed network.
Comtarsia Logon Client
This client allows Windows workstations to authenticate directly against an LDAP Directory, making LDAP the central and primary user database. It correctly evaluates and applies password policies from all current LDAP servers to the logon process. Furthermore, LDAP group memberships can be seamlessly mapped to local groups on Windows workstations, enabling comprehensive, platform-independent user management directly from your LDAP directory.
Comtarsia SignOn Gate
The SignOn Gate handles the automatic user management and password synchronization across all your resource systems, including Windows, Linux, and Unix. This ensures that password policies are consistently enforced everywhere and that user access is always up-to-date, simplifying administration and bolstering security.
Extensive Management with LDAP Schema Extensions
Our solutions utilize a Comtarsia LDAP schema extension, which allows you to define user-specific settings directly on the user object in the directory. This includes parameters such as home directories, profile paths, network aliases, and network applications. These settings are evaluated at logon and automatically assigned to the user's session, ensuring a consistent and personalized environment regardless of which workstation they use.
Full Support for PKI Authentication
The Comtarsia SignOn Solutions offer full support for Public Key Infrastructure (PKI), enabling secure and convenient logon at workstations via Smart Card or Token. This provides access to all resources in the network with a high degree of security and comfort. For resource systems that are not PKI-compatible, our automatic "Session Password" generation and password synchronization ensure seamless and secure access, closing security gaps and extending the benefits of your central directory to every corner of your network.