Name resolution methods – 8e6 Technologies Enterprise Filter Authentication R3000 User Manual

A

PPENDIX

A: A

UTHENTICATION

O

PERATIONS

T

IER

1: S

INGLE

S

IGN

-O

N

A

UTHENTICATION

8

E

6 T

ECHNOLOGIES

, R3000 I

NTERNET

F

ILTER

A

UTHENTICATION

U

SER

G

UIDE

205

Most server operating systems now support some imple-
mentations of LDAP authentication. The Microsoft Active
Directory LDAP-based model became available with the
release of Windows 2000.

Name resolution methods

The name resolution process occurs when the R3000
attempts to resolve the IP address of the authentication
server with the machine name of that server. This contin-
uous and regulated automated procedure ensures the
connection between the two servers is maintained.

When using an NT server with SMB, the name resolution
process occurs when a valid Windows Internet Name
Service (WINS) Server IP address is entered or a broadcast
query is made.

When using an LDAP server, the name resolution process
occurs when a Domain Name Service (DNS) entry is made.
In order to accommodate this request, the LDAP server
must have a valid DNS entry or the IP address must be
added to the R3000 hosts file.

NOTE: If LDAP is used, client machines will still use the SMB
authentication method to communicate with the R3000 server for
Tier 1 authentication. LDAP communication only occurs between
the R3000 server and the LDAP server.