Apple Mac OS X Server (version 10.2.3 or later) Uživatelský manuál Strana 205
- Strana / 690
- Tabulka s obsahem
- KNIHY
Hodnocené. / 5. Na základě hodnocení zákazníků
Users and Groups 205
Using Kerberos
If you already use Kerberos to authenticate users, you can use Kerberos to validate
passwords for the following services of Mac OS X Server version 10.2 and later:
m Login window
m Mail service
m FTP
m AFP server and client
These services have been “Kerberized.” Only services that have been Kerberized can use
Kerberos to validate a user.
Understanding Kerberos
Like the Password Server, a Kerberos server is dedicated to handling data needed for user
validation. Other user data is maintained on a separate server.
Kerberized services are configured to authenticate principals who are known to a particular
Kerberos realm. You can think of a “realm” as a particular Kerberos database or
authentication domain, which contains validation data for users, services, and sometimes
servers (known as “principals”). For example, a realm contains principals’ private keys, which
are the result of a one-way function applied to passwords. Service principals are generally
based on randomly generated secrets rather than passwords.
Here are examples of realm and principal names; note that realm names are capitalized by
convention to distinguish them from DNS domain names:
m Realm: MYREALM.EXAMPLE.COM
m User principal: [email protected]
m Service principal: afpserver/another[email protected]
There are several phases to Kerberos authentication. In the first phase, the client obtains
credentials to be used to request access to Kerberized services. In the second phase, the
client requests authentication for a specific service. In the final phase, the client presents
those credentials to the service.
LL0395.Book Page 205 Wednesday, November 20, 2002 11:44 AM
- Administrator’s Guide 1
- Apple Computer, Inc 2
- Contents 3
- 3 Users and Groups 117 4
- 4 Sharing 215 5
- 5 File Services 233 5
- 7 Print Service 335 6
- 8 Web Service 357 7
- 9 Mail Service 391 7
- 11 DHCP Service 501 9
- 12 NetBoot 511 9
- 13 Network Install 543 9
- 14 DNS Service 553 9
- 15 Firewall Service 563 9
- 16 SLP DA Service 583 10
- Appendix A 10
- The Scenarios 639 11
- How to Use This Guide 13
- Preface 14
- How to Use This Guide 15
- Administering Your Server 17
- Password Security 18
- Networking Security 18
- File and Printer Sharing 18
- Open Directory Services 19
- High Availability 20
- Directory Services 21
- File Services 23
- Chapter 1 24
- Print Service 25
- Web Service 25
- Mail Service 26
- Client Management 27
- Network Install 27
- Network Services 28
- QuickTime Streaming Service 29
- Application, tool 31
- For more 31
- Server Assistant 33
- Open Directory Assistant 33
- Directory Access 34
- Workgroup Manager 34
- Server Settings 35
- Server Status 36
- Macintosh Manager 37
- NetBoot Administration Tools 37
- Server Monitor 37
- Streaming Server Admin 38
- Directory Services 43 43
- Data Consolidation 44
- Data Distribution 45
- Directory Services 47 47
- Directory Services 49 49
- Local Data 50
- Shared Data 51
- Directory Services 53 53
- Two-Level Hierarchies 55
- More Complex Hierarchies 57
- The Automatic Search Policy 59
- Custom Search Policies 60
- General Planning Guidelines 61
- Directory Services 63 63
- Directory Services 65 65
- Password Server Database 67
- Password Server Security 67
- Directory Services 69 69
- Directory Services 71 71
- Directory Services 73 73
- Directory Services 75 75
- Directory Services 77 77
- Directory Services 79 79
- Directory Services 81 81
- Directory Services 83 83
- Directory Services 85 85
- Directory Services 87 87
- Directory Services 89 89
- Directory Services 91 91
- Directory Services 93 93
- Directory Services 95 95
- Directory Services 97 97
- 98 Chapter 2 98
- Directory Services 99 99
- Chapter 2 100
- Directory Services 101 101
- Directory Services 103 103
- Directory Services 105 105
- Directory Services 107 107
- Directory Services 109 109
- Directory Services 111 111
- Directory Services 113 113
- Directory Services 115 115
- Users and Groups 117
- Authentication 118
- Password Validation 119
- Information Access Control 120
- Administration Privileges 121
- Home Directories 122
- Mail Settings 122
- Resource Usage 123
- User Preferences 123
- Group Folders 123
- Workgroups 124
- Computer Access 124
- Users and Managed Users 124
- Administrators 125
- Guest Users 125
- Predefined Accounts 126
- Users and Groups 127 127
- Chapter 3 128
- Users and Groups 129 129
- Step 5: Create users 130
- Step 6: Create groups 130
- Users and Groups 131 131
- Users and Groups 133 133
- Users and Groups 135 135
- Defining Short Names 137
- Choosing Stable Short Names 138
- Avoiding Duplicate Names 138
- Users and Groups 139 139
- Defining User IDs 141
- Users and Groups 143 143
- Users and Groups 145 145
- Users and Groups 147 147
- Users and Groups 149 149
- Users and Groups 151 151
- Types of Home Directories 153
- Users and Groups 155 155
- Users and Groups 157 157
- Users and Groups 159 159
- Users and Groups 161 161
- Users and Groups 163 163
- Users and Groups 165 165
- Users and Groups 167 167
- Users and Groups 169 169
- Defining a Group ID 171
- 6 Click Save 173
- Users and Groups 175 175
- Users and Groups 177 177
- Users and Groups 179 179
- 2 Click the Accounts button 181
- Users and Groups 183 183
- 184 Chapter 3 184
- Users and Groups 185 185
- Users and Groups 187 187
- Users and Groups 189 189
- Users and Groups 191 191
- Users and Groups 193 193
- Users and Groups 195 195
- Choosing a Password 196
- Using Authentication Manager 197
- Migrating Passwords 198
- Users and Groups 199 199
- Setting Up a Password Server 201
- Users and Groups 203 203
- Understanding Kerberos 205
- Users and Groups 207 207
- Users and Groups 209 209
- Users and Groups 211 211
- Users and Groups 213 213
- Privileges 215
- Chapter 4 216
- Network Globe Contents 217
- Step 4: Turn file services on 219
- Security Issues 220
- Sharing 221
- Sharing 223 223
- Sharing 225 225
- Sharing 227 227
- Sharing 229 229
- Sharing 231 231
- File Services 235 235
- Chapter 5 236
- File Services 237 237
- File Services 239 239
- File Services 241 241
- File Services 243 243
- File Services 245 245
- File Services 247 247
- Setting Up Windows Services 249
- File Services 251 251
- File Services 253 253
- File Services 255 255
- Secure FTP Environment 257
- File Services 259 259
- Before You Set Up FTP Service 261
- File Services 263 263
- File Services 265 265
- File Services 267 267
- Before You Set Up NFS Service 269
- Setup Overview 269
- Step 1: Before You Begin 269
- Managing NFS Service 271
- File Services 273 273
- File Services 275 275
- File Services 277 277
- Client Management: Mac OS X 279
- Chapter 6 280
- Finding Applications 281
- Finding Shared Documents 281
- To set up a computer list: 285
- To delete a computer account: 289
- 9 Click Save 293
- Using Wireless Services 294
- Preference Management Options 298
- To manage user preferences: 299
- To manage group preferences: 299
- To start Classic after login: 305
- To add items to the Dock: 309
- To set the user environment: 313
- To hide the Eject command: 315
- To set email preferences: 319
- To set Web preferences: 319
- To set up how a user logs in: 321
- To show a password hint: 321
- Users Cannot Open Files 331
- Chapter 7 336
- Print Service 337 337
- Print Service 339 339
- Print Service 341 341
- Print Service 343 343
- Print Service 345 345
- Print Service 347 347
- Print Service 349 349
- Print Service 351 351
- Print Service 353 353
- Deleting Print Log Archives 354
- Print Service 355 355
- Configuring Web Service 358
- Providing Secure Transactions 358
- Setting Up Web Sites 358
- Understanding WebDAV 359
- Chapter 8 360
- Step 2: Create a default page 361
- Web Service 363 363
- Web Service 365 365
- Web Service 367 367
- Web Service 369 369
- Web Service 371 371
- Web Service 373 373
- Web Service 375 375
- Options Includes 376
- Web Service 377 377
- AddType text/html shtml 377
- Web Service 379 379
- #AddModule mod_php4.c 379
- Enabling WebMail 380
- Configuring WebMail 381
- Web Service 383 383
- Web Service 385 385
- A CGI Will Not Run 386
- Macintosh-Specific Modules 386
- Open-Source Modules 387
- Web Service 389 389
- Post Office Protocol (POP) 392
- Mail Service 393 393
- Chapter 9 394
- Mail Service 395 395
- SMTP Authentication 396
- Restricted SMTP Relay 396
- Rejected SMTP Servers 397
- Blacklisted Servers 397
- Step 2: Set up MX records 399
- Step 3: Start mail service 400
- Mail Service 401 401
- Mail Service 403 403
- Mail Service 405 405
- Mail Service 407 407
- Mail Service 409 409
- Mail Service 411 411
- Mail Service 413 413
- /usr/sbin/sendmail -bd 414
- Mail Service 415 415
- MAILSERVER=-YES 415
- MAILSERVER=-NO 415
- Mail Service 417 417
- Mail Service 419 419
- Mail Service 421 421
- Mail Service 423 423
- 424 Chapter 9 424
- Log Reject Result 424
- Mail Service 425 425
- Mail Service 427 427
- Account name 429
- Account ID 429
- Mail Service 431 431
- Internet 432
- Mail Service 433 433
- The User Experience 436
- Locating the Home Directory 437
- Chapter 10 438
- Software 439
- Hardware 439
- 3 Restart the computer 441
- Using Update Packages 441
- Macintosh Manager Security 442
- The Multi-User Items Folder 443
- Preparation for Using NetBoot 447
- To import all users: 451
- Using Guest Accounts 453
- To allow simultaneous logins: 457
- To duplicate a workgroup: 461
- To change Members settings: 461
- Types of Shared Folders 467
- To create a hand-in folder: 469
- To allow access to printers: 471
- To select a default printer: 471
- To open items at startup: 475
- To duplicate a computer list: 477
- To enable idle logout: 481
- To set up a login message: 485
- To customize a panel name: 485
- To view a report: 487
- Forced Preferences folder 491
- Preserved Preferences folder 491
- To use forced preferences: 493
- Always copied Never copied 495
- The User’s Computer Freezes 498
- DHCP Service 501
- Creating Subnets 502
- Using Static IP Addresses 502
- Locating the DHCP Server 503
- Step 1: Create subnets 503
- Chapter 11 504
- DHCP Service 505 505
- DHCP Service 507 507
- DHCP Service 509 509
- 12 NetBoot 511
- Client Computer Requirements 513
- Network Requirements 514
- Capacity Planning 515
- NetBoot Image Folder 516
- Mac OS ROM Boot file 517
- Chapter 12 518
- TFTP and the Boot Files 519
- Disk Images 519
- Shadow Images 520
- Security 521
- NetBoot and AirPort 521
- NetBoot 523 523
- NetBoot 525 525
- NetBoot 527 527
- NetBoot 529 529
- NetBoot 531 531
- NetBoot 533 533
- NetBoot 535 535
- Enabling Server Selection 537
- NetBoot 539 539
- Starting Up Using the N Key 540
- NetBoot Client 541
- Image Size 544
- Network Install 545 545
- Chapter 13 546
- About Packages 547
- Creating Packages 547
- Network Install 549 549
- Network Install 551 551
- Click Restart 552
- DNS Service 553
- DNS and BIND 554
- Using DNS With Mail Service 554
- DNS Service 555 555
- Step 2: Configure BIND 556
- Step 4: Start DNS service 556
- DNS Service 557 557
- What Is BIND? 558
- BIND on Mac OS X Server 558
- Practical Example 559
- Chapter 14 560
- Check Your Configuration 561
- Firewall Service 563
- Chapter 15 564
- What Is a Filter? 565
- Using Address Ranges 566
- IP Address Precedence 567
- Multiple IP Addresses 567
- Practical Examples 567
- Deny 25 (SMTP) 17.128.100.0 568
- Allow 25 (SMTP) All 568
- Deny 548 (AFP/TCP) All 568
- Firewall Service 569 569
- Firewall Service 571 571
- Viewing Denied Packets 573
- Firewall Service 575 575
- Firewall Service 579 579
- Firewall Service 581 581
- SLP DA Service 583
- Chapter 16 584
- SLP DA Service 585 585
- SR Service requests 587
- ERR SLP errors 587
- Using the Attributes List 588
- Tool or technique Use to 589
- Chapter 17 590
- Using installer 597
- /sbin/reboot 600
- /sbin/shutdown -r 600
- Configuring TCP/IP Settings 603
- Managing Network Services 604
- Designating Proxy Servers 604
- Requirements 607
- Failover Operation 607
- To enable IP failover: 609
- Configuring IP Failover 610
- Obtaining an SSL Certificate 616
- Mac OS X 623
- User record 629
- With Active Directory 639
- Appendix B 640
- URL to mount net 647
- Glossary 649
- Glossary 651 651
- Glossary 653 653
- Glossary 655 655
- Glossary 657 657
- Index 661 661
- Index 663 663
- Index 665 665
- Index 667 667
- Index 669 669
- Index 671 671
- Index 673 673
- Index 675 675
- Index 677 677
- Index 679 679
- Index 681 681
- 682 Index 682
- Index 683 683
- Index 685 685
- Index 687 687
- Index 689 689
Související produkty a manuály pro Software Apple Mac OS X Server (version 10.2.3 or later)
Software Apple GarageBand 3 Uživatelský manuál
(108 stránky)
(108 stránky)
Software Apple Logic Express 7 Uživatelský manuál
(642 stránky)
(642 stránky)
Software Apple iWeb '08 Uživatelský manuál
(25 stránky)
(25 stránky)
Software Apple Compressor (4.0) Uživatelský manuál
(275 stránky)
(275 stránky)
Software Apple iPhoto '08 Uživatelský manuál
(22 stránky)
(22 stránky)
Software Apple iMovie HD 6 Uživatelský manuál
(49 stránky)
(49 stránky)
Software Apple Final Cut Pro 6 Uživatelský manuál
(203 stránky)
(203 stránky)
Software Apple Chinese Language Kit Uživatelský manuál
(100 stránky)
(100 stránky)
Software Apple iWork '09 Uživatelský manuál
(374 stránky)
(374 stránky)
Software Apple WaveBurner 1.5 Uživatelský manuál
(71 stránky)
(71 stránky)
© 2020, manymanuals.cz. Všechna práva vyhrazena. | 0.030 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentáře k této Příručce