Table of Contents
Advertisement
Sun Enterprise Authentication Mechanism software offers a single repository for enterprise authentication information
called the Key Distribution Center (KDC). The KDC maintains a database of user, server, and password information.
Through that database, SEAM software can authenticate users, servers, and applications. Anyone and everyone
attempting to access information must first be checked against the KDC database before being ticketed as an
authenticated user. Because security information is centralized, SEAM software allows customers to manage and
control all enterprise-wide logins from a single console, which helps their enterprise reduce the total cost of
administering and managing security.
Strong encryption support
Sun Enterprise Authentication Mechanism software provides strong encryption support. During the authentication
process, all the information exchanged between customers and the KDC is encrypted for an extra level of security.
SEAM software also uses an encrypted channel when storing KDC entries over the network.
Ease of use
Sun Enterprise Authentication Mechanism software supports a Java technology-based administrative tool for easy
access and configuration. It also enables users to load authentication information in batch mode, which is particularly
useful if the enterprise loses or gains large numbers of users each year.
Sun Enterprise Authentication Mechanism software supports single sign-on capabilities. With single sign-on, SEAM
software can authenticate users (to gain access to multiple applications) by ticketing them only once when they first log
in. It also spares users the need to memorize multiple passwords, or enter passwords multiple times in a session.
Higher availability
Sun Enterprise Authentication Mechanism software's distributed architecture provides enterprises with higher
availability. With SEAM software, customers can replicate their security information. This provides faster access to
information as well as duplicate copies in the event of an emergency. Should the master KDC fail, the read-only
replicated slave KDC still holds the necessary information for the authentication process to take place without
interruption. What's more, if the master becomes unrecoverable, customers can easily convert the replicated slave to be
the new master.
Faster performance
Sun Enterprise Authentication Mechanism software is faster and more reliable because its replicated KDCs reduce
contention for security verification from across the enterprise. For example, replicas may be created for use by different
business divisions or remote offices. Instead of competing for a single copy, the division or office has its own copy.
Consequently, access to secured applications becomes faster.
Multiple realms
Sun Enterprise Authentication Mechanism software supports multiple realms. A realm is the set of users or servers
registered with a specific KDC basically, the scope of authentication for a given KDC. Separating an enterprise into
multiple realms enables SEAM software to operate across organizational boundaries and between different systems. A
client in one realm can be authenticated to a server in another.
SEAM software allows enterprises to isolate individual departments from each other, decentralizing control to local
network administrators. For large corporations, realms enable SEAM software to be configured to allow administration
at the local level.
A more secure environment
Currently, Sun Enterprise Authentication Mechanism software supports secure FTP, NFS software, Telnet, and r*
commands. These secure network services, combined with strong encryption support, enable the enterprise to preserve
data privacy and data integrity by eliminating snooping around the network and tampering with data. With SEAM
software, users can access files securely over the network.
Interoperability
Sun Enterprise Authentication Mechanism software is compliant with Internet RFC 1510 and RFC 1964. These RFCs
define the Kerberos V5 protocols, the de facto industry standard. Through this standards compliance, SEAM software
allows enterprises to integrate with other vendors' compliant security products.
Cost-effective
TM
Sun Fire
V480 Server
Just the Facts
Sun Proprietary and Confidential - Internal Use Only
Sept. 26, 2002
33
Advertisement
Table of Contents
