Security Model

Previous page
Table of content
Next page

To provide secure access to an LDAP server, the LDAP v.3 protocol allows the use of Simple Authentication and Security Layer (SASL) mechanisms. Active Directory confirms the LDAP v.3 requirements and, therefore, supports SASL mechanisms, which include Kerberos version 5 and MS Negotiate (on Windows 2000). The supported-SASLMechanisms attribute of the RootDSE object stored on every Active Directory server (a domain controller running on Windows 2000 or Windows .NET) contains two values: GSSAPI and GSS-SPNEGO. GSSAPI means Kerberos, and GSS-SPNEGO stands for NT Negotiate (Kerberos, NT LAN Manager (NTLM), etc.). Windows .NET-based domain controllers also support two other SASL mechanisms: EXTERNAL and DIGEST-MD5.


Previous page
Table of content
Next page
Windows .NET Domains & Active Directory
Windows .NET Server 2003 Domains & Active Directory
ISBN: 1931769001
EAN: 2147483647
Year: 2002
Pages: 154
Authors: Aleksey Tchekmarev
BUY ON AMAZON
ADO.NET 3.5 Cookbook (Cookbooks (OReilly))
MySQL Stored Procedure Programming
CISSP Exam Cram 2
Twisted Network Programming Essentials
Telecommunications Essentials, Second Edition: The Complete Global Source (2nd Edition)
Cultural Imperative: Global Trends in the 21st Century
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy