Lantronix SLC 32 Lantronix SLC - User Guide - Page 142

12: User Authentication NIS (Network Information System) A network naming and administration system developed by Sun Microsystems for smaller networks. Each host client or server in the network has knowledge about the entire network. A user at any host can access files or applications on any host in the network with a single user identification and password. NIS uses the client/server model and the Remote Procedure Call (RPC) interface for communication between hosts. NIS consists of a server, a library of client programs, and some administrative tools. NIS is often used with the Network File System (NFS). LDAP (Lightweight Directory Access Protocol) A set of protocols for accessing information directories, specifically X.500based directory services. LDAP runs over TCP/IP or other connectionoriented transfer services. RADIUS (Remote Authentication Dial-In User Service) An authentication and accounting system used by many Internet Service Providers (ISPs). A client/server protocol, it enables remote access servers to authenticate dial-in users and authorize their access to the requested system or service. RADIUS allows a company to maintain user profiles in a central database that all remote servers can share. It increases security, allowing a company to set up a policy that can be applied at a single administered network point. Kerberos Kerberos is a network authentication protocol that enables two parties to exchange private information across an unprotected network. It works by assigning a unique electronic credential, called a ticket, to each user who logs on to the network. The ticket is embedded in messages to identify the sender. TACACS+ (Terminal Access Controller Access Control System) TACACS+ allows a remote access server to communicate with an authentication server to determine whether the user has access to the network. TACACS+ is a completely new protocol and is not compatible with TACACS or XTACACS. The SLC console manager supports TACACS+ only. 3. Click the Apply button. To disable a method in the Enabled methods list: 1. Select the method and click the right arrow between the lists. To set the order in which the SLC console manager authenticates: 1. Use the up and down arrows to the left of the Enabled methods list. To enable For Attempt next method on authentication rejection: 1. Choose one of the following options:  To use all methods in order of precedence, until it obtains a successful authentication, select the check box. This is the default.  To use only the first authentication method that responds (in case a server is down or unavailable), clear the check box. After you have enabled the authentication method, you must configure it. Go to the following sections:  Local and Remote Users on page 143  NIS on page 149 SLC™ Console Manager User Guide 142