1 / 10

Directory Servers

Directory servers help users find information and centralize security through hierarchical organization of objects. LDAP is a popular protocol for user interaction. Comprehensive relay devices integrate forwarding and security, reducing costs. Policy-based networking with COPS ensures uniform policy implementation.

tokala
Download Presentation

Directory Servers

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Directory Servers • Purposes (From Chapter 6) • Help users find information • Centralize security (single login, etc.)

  2. Directory Servers • Information is Organized Hierarchically • Hierarchy of objects • X.500 Standard defines types of objects • Also defines object properties Organization (O) = xxx Organizational Unit (OU) = yyy Employee (E) = zzz Common Name=Pat Lee E-Mail=Lee …

  3. Directory Servers • LDAP • Lightweight Directory Access Protocol • Most popular directory access protocol • Governs user interaction with directory server LDAP Directory Server

  4. Directory Servers • Directory Server Markup Language (DSML) • Standardized way for application servers to interact with directory servers • Application server may collect data from multiple directory servers, present integrated results to browser user DSML Directory Server Application Server

  5. Directory Server Products • Directory Server Products • Novell Directory Services (NDS) • From Novell • Book incorrectly calls it NetWare Directory Services • Mature, widely used • Active Directory • From Microsoft • New

  6. Converging Boxes • Today, Many Types of Devices • Forwarding • Hubs, Switches, Routers • Security • Firewalls, etc. • In future, single Comprehensive Relay Devices will combine forwarding and security CRD

  7. Converging Boxes • Multi-Layer Packet Analysis • Comprehensive relay devices will analyze headers and data fields at all layers • For intelligent forwarding, like Layer 4 switches • For intelligent security, like firewalls • This will reduce costs compared to having separate devices

  8. Converging Boxes • Processing Concerns • Multi-layer forwarding will be processing intensive • So will be multi-layer security • Processors must grow in power to keep up with increasing demand plus multi-layer processing and security

  9. Policy Based Networking • Policy Servers will Store Policies and Related Data • Will control individual forwarding, security, and comprehensive relay devices • Uniformity in policy implementation Policy Server Policy CRD Policy CRD

  10. Policy Based Networking • COPS • Common Open Policy Service • Standardized way for policy servers to talk with devices for which they set policy Policy Server COPS CRD COPS CRD

More Related