ACE Management Server Administrator's Manual
Information about Windows domain user account states is provided in clear and
useful messages. Reasons for login failures are presented as "locked out" or
"password expired."
ACE Management Server acts as an Active Directory password change proxy.
You can use the instance customization feature in ACE with your own established
naming conventions to associate users with machines.
Security features include the following:
Encrypted communications between server and clients travel over HTTPS traffic.
Passwords are stored securely in hashed form in the backing store.
Flexible database options allow use of an embedded database or external RDBMS
to store ACE instance data and policies.
ACE Management Server is easy to install and configure. Client traffic can be proxied
by easily available products. The server uses easily available software components:
Apache Web server 2.0
The default SQLite database store
The server setup uses industry‐standard protocols:
HTTPS and LDAP
XML‐RPC for message encapsulation
ACE Management Server offers extensibility and availability:
You can create and use more than one ACE Management Server. When you use
more than one server, you can set the servers up so that they share the same
database for load balancing or increased fault tolerance.
A Windows ACE Management Server can be on the same system as Workstation.
You can designate a single ACE Management Server name, such as
https://ace.policyserver.company.com, and use DNS lookup to translate
the host name to an address. The address is cached if a DNS server is not available.
Additionally, you can use different ACE Management Server instances if users
travel between offices in different geographic locations.
N
Your server name must be either the machine name in English or the
OTE
IP address. International characters are not supported.
10
VMware, Inc.