Session B: Information Systems and Data Warehouse
Martin Malík, Tomá Kamrád: Information systems Conception of University of Ostrava

7. The Users authentication

Along with a growing amount of IS the number of accounts and passwords in various systems becomes complicated for the user and thus creates a potential security hazard. It is the application administrator who manages the accounts and access rights for supplier secured systems (The Student, The Economy, The Personnel). The other systems (science and research, publishing activity, property and software accounting etc.) required a central authentication mechanism that could be gradually transformed even to a certification authority.

After a number of tests and considering the fact that the Novell has been employed for address services and electronic mail at UO for a long time we have chosen The Novell‘s NDS as an authentication authority. An application, usually with WWW access written for instance in PHP script, where it is necessary to authenticate the user, employs Lightweighted Directory Access Protocol (LDAP) service on the NDS and verifies his/her access and rights against usual account and password from the Novell. The rights are configured by the application administrator by means of the cluster mechanism in the NDS. Thus the users can access many systems with one account and password, which they have in the Novell.

This system requires mutual interlacement of the IS carrying primarily personal information and a cooperation with the NDS via integrated code book of persons (personnel classification).



© This publication and its compilation in form and content is copyrighted. Every realization which is not explicitly allowed by copyright law requires a written agreement. Especially, this holds for reprography and processing / storing by electronic systems.

EUNIS Proceeding DTD Version 1.0
HTML - Version create: Fri Mar 23 15:30:43 2001