Remote authentication
The library provides a flexible and robust method of remote authentication. Security tasks are centralized and user management can be performed from a single interface, without logging in.
The following remote authentication protocols are supported:
- LDAP (with optional RACF authentication) – LDAP is an open protocol that uses TCP/IP to provide access to directories that support an X.500 model and that does not incur the resource requirements of the more complex X.500 Directory Access Protocol (DAP). For example, LDAP can be used to locate people, organizations, and other resources in an Internet or intranet directory.
- Kerberos – Kerberos is a network authentication protocol that is based on symmetric key cryptography. Kerberos assigns a unique key, called a ticket, to each user who logs on to the network. The ticket is embedded in messages that are sent over the network. The receiver of a message uses the ticket to authenticate the sender.