Справочник Пользователя для Red Hat Version4.1
Appendix D, Gateway User Help 125
Authentication
Authentication
Authentication is the process of enabling users to perform operations on the
directory. By default, access to the directory is denied to all users with the
exception of the directory administrator. The directory administrator defines the
user permissions that grant or restrict access to information in the directory.
directory. By default, access to the directory is denied to all users with the
exception of the directory administrator. The directory administrator defines the
user permissions that grant or restrict access to information in the directory.
Access Control
Using the access control mechanism, the directory administrator can allow or
deny access:
deny access:
•
to any unauthenticated user (anonymous access)
•
to all authenticated users
•
to specific authenticated users or groups
•
from a specific machine on DNS domain
•
at a specific time of day or day of the week
•
based on authentication method
Following are some of the access restrictions and access grants the directory
administrator can set up by applying permissions to the directory:
administrator can set up by applying permissions to the directory:
•
require the user to authenticate before accessing the directory in any way.
•
require the user to authenticate before accessing certain subsections of the
directory.
directory.
•
require the user to authenticate before performing certain kids of actions,
such as adding or modifying entries.
such as adding or modifying entries.
•
deny user access to all or parts of the directory, or deny the ability to
perform certain kinds of functions.
perform certain kinds of functions.
•
allow anonymous access to all or parts of the directory.
•
allow anonymous access for some kinds of operations (such as searches),
but not others (such as modifications).
but not others (such as modifications).