|
Many network services at Dartmouth depend on being able to identify users in order to limit access, or provide personalized information. For example, you sign in (authenticate that you are who you say you are) to your electronic mail box with a user name and passwordso only you can read your e-mail. Many Library databases are licensed from commercial publishers who restrict use to a specific license holder. Kerberos authentication software is one method that enables Dartmouth service providers and system administrators to restrict access to those services where identification is needed [for example, the Dartmouth Student Information System (Banner), DA$H card balances, degree audit, and Digital Library Collections]. This type of authentication has been in use at Dartmouth for many years, but is being phased out in favor of the PKI and Web authentication methods discussed below.
In addition to Kerberos, another authentication system in wide use at Dartmouth is PKI. This system uses certificates for authentication and can be used on any version of Macintosh and Windows operating systems. Dartmouth also implemented a Web authentication system that will automatically search for a PKI certificate, then look for a Kerberos ticket if a certificate is not found, then prompt for a DND user name and password if a PKI certificate or Kerberos ticket are not found. This system provides a standard authentication interface for all users and Web-based applications. For more information, see Web Authentication.
Note: Kerberos authentication is not compatible with the Intel Macintosh computers. If you have an Intel Macintosh computer, you will need to use PKI certificates or the Web Authentication system for authentication.
For more information related to this topic, see:
|
