Author: buildbot
Date: Sat Feb 9 08:01:07 2013
New Revision: 849995
Log:
Staging update by buildbot for directory
Modified:
websites/staging/directory/trunk/content/ (props changed)
websites/staging/directory/trunk/content/apacheds/kerberos-ug/1.1-introduction.html
Propchange: websites/staging/directory/trunk/content/
------------------------------------------------------------------------------
--- cms:source-revision (original)
+++ cms:source-revision Sat Feb 9 08:01:07 2013
@@ -1 +1 @@
-1444339
+1444341
Modified: websites/staging/directory/trunk/content/apacheds/kerberos-ug/1.1-introduction.html
==============================================================================
--- websites/staging/directory/trunk/content/apacheds/kerberos-ug/1.1-introduction.html (original)
+++ websites/staging/directory/trunk/content/apacheds/kerberos-ug/1.1-introduction.html Sat
Feb 9 08:01:07 2013
@@ -149,7 +149,7 @@
<li><a href="1.1.8-tickets.html">1.1.8 - Tickets</a></li>
</ul>
<h1 id="11-introduction">1.1 - Introduction</h1>
-<p>The <strong>Kerberos</strong> server is one part of the <strong>Apache
Directory Server</strong> : it uses the <strong>LDAP</strong> server as
a backend, but has its own separate network layer. It makes it easy to install, compared to
other solutions where you have two components : a LDAP server o one side, and the Kerberos
Server on the other.</p>
+<p>The <strong>Kerberos</strong> server is a part of the <strong>Apache
Directory Server</strong> : it uses the <strong>LDAP</strong> server as
a backend, but has its own network layer. which makes it easy to install, compared to other
solutions where you have two components : an LDAP server on one side, and the Kerberos Server
on the other.</p>
<p>We also have a complete configuration GUI in Studio, which allows administrators
to tweak their server in a convenient way.</p>
<p>The Kerberos provider for Apache Directory implements RFC 1510 and RFC 4120 , the
Kerberos V5 Network Authentication Service. The purpose of Kerberos is to verify the identities
of principals (users or services) on an unprotected network. While generally thought of as
a single-sign-on technology, Kerberos' true strength is in authenticating users without ever
sending their password over the network. Kerberos is designed for use on open (untrusted)
networks and, therefore, operates under the assumption that packets traveling along the network
can be read, modified, and inserted at will. This chart provides a good description of the
protocol workflow.</p>
<p>Kerberos is named for the three-headed dog that guards the gates to Hades. The three
heads are the client, the Kerberos server, and the network service being accessed.</p>
|