|
Many network services at Dartmouth depend on being able to identify users in
order to limit access, or provide personalized information. For example, you
sign in (authenticate that you are who you say you are) to your electronic mail
box with a user name and password so only you
can read your e-mail. Many Library databases are licensed from commercial
publishers who restrict use to a specific license holder. Kerberos
authentication software is one method that enables Dartmouth service providers
and system administrators to restrict access to those services where
identification is needed [for example, the Dartmouth Student Information System
(Banner), DA$H card balances, degree audit, and Digital Library Collections].
This type of authentication has been in use at Dartmouth for many years.
In addition to Kerberos, another authentication system in wide use at
Dartmouth is
PKI. This system uses certificates for authentication and can be used
on any version of Macintosh and Windows operating systems. Dartmouth has
recently implemented a
Web Authentication system that will automatically search for a PKI
certificate, then look for a Kerberos ticket if a certificate is not found,
then prompt for a DND user name and password if a PKI certificate or Kerberos
ticket are not found. This system provides a standard authentication interface
for all users and Web-based applications. For more information, see
Web Authentication.
Note: Kerberos authentication is not compatible with the
Intel Macintosh computers. If you have an Intel Macintosh computer,
you will need to use
PKI certificates or the
Web Authentication system for authentication.
For more information related to this topic, see:
|
