From 6a953e9f9eb1d7617e519063da9f59d43c25e35f Mon Sep 17 00:00:00 2001 From: John Terpstra Date: Sun, 19 Jun 2005 15:21:11 +0000 Subject: [PATCH] Added notes that this chapter is in flux. (This used to be commit 1e42b2c6816ffd5b3656734e3c0804e81a43f503) --- docs/Samba3-HOWTO/TOSHARG-PDC.xml | 27 ++++++++++++++++++++++++++- 1 file changed, 26 insertions(+), 1 deletion(-) diff --git a/docs/Samba3-HOWTO/TOSHARG-PDC.xml b/docs/Samba3-HOWTO/TOSHARG-PDC.xml index 7518dd6edc3..a82d36e9dd1 100644 --- a/docs/Samba3-HOWTO/TOSHARG-PDC.xml +++ b/docs/Samba3-HOWTO/TOSHARG-PDC.xml @@ -266,7 +266,32 @@ administrative nightmare. SSO implementations may involve centralization of all user account information in one repository. Depending on -... add stuff here JHT! +environmental complexity and the age of the systems over which a SSO solution is implemented, it may not be +possible to change the solution architecture so as to accomodate a new identity management and user +authentication system. Many SSO solutions involving legacy systems consist of a new super-structure that +handles authentication on behalf of the user. The software that gets layered over the old system may simply +implement a proxy authentication system. This means that the addition of SSO increases over-all information +systems complexity. Ideally, the implementation of SSO should reduce complexity and reduce administative +overheads. + + + +JJJ More Info HERE! + + + +Briefly describe: 1. New auth system that uses external auth. + 2. SSO system that stores info about all IT systems, and provides front-end + app. that hides the IT systems beneath a veneer of its own. + 3. Meta-directories and distribution if ID info. + 4. The significance of Samba in the context of SSO + 5. Implications of domain security + a) with NT4 domain + b) with ADS + + + +Other considerations: Should this stuff go elsewhere? Should it be dropped? Should this chapter be revamped?