> developer > dnu > courses > secure identity management page 19
Secure Identity Management Overview Course
March 2003
DeveloperNet University Course
Reader Rating    from ratings rate this article
View an eBook Version of this course - LARGE FILE! Send this page to a friend

Novell Modular Authentication Service (NMAS)

Novell Modular Authentication Service (NMAS) is a security product that offers you an easy way to manage multiple authentication methods across your network. With NMAS you can create stronger forms of authentication and authorization to secure your critical corporate resources. While removing the complexity of authentication to Novell eDirectory, NMAS allows you to create a variety of flexible security options. NMAS also helps remove the administrative overhead involved with maintaining password information throughout your organization.

With NMAS, users can authenticate to the network via something they know (for example, a password), something they have (for example, a smart card), or something they are (for example, a fingerprint). NMAS also includes the following enhancements:

  • Authenticates and validates Entrust X.509 certificates managed in the Entrust Entelligence Client

  • Authenticates any smart card to eDirectory using the PKCS#11 standard

  • Enables developers to force a NMAS authentication at any time

  • Enforces strong password policy on the eDirectory password

  • Includes a RADIUS server for secure remote access to eDirectory via NMAS

  • Provides workstation control by automatically locking a workstation or logging out a user based on inactivity

  • Runs natively on Windows NT/2000 in addition to NetWare, Linux, Solaris, and AIX

  • Supports Novell International Cryptographic Infrastructure (NICI) encryption

By supporting the leading smart card, proximity card, token, biometric and digital-certificate vendor's authentication products, NMAS provides a way to centrally and easily manage your authentication methods. In addition to its administration features, NMAS also offers graded authentication. With graded authentication you can create a security policy that grants access to your file system or directory resources based on the strength and combination of the authentication. For example, you can create a method that requires a user to log in with a password, present a valid smart card ID and successfully complete fingerprint identification. By including graded authentication and support for various Novell and third-party authentication modules, NMAS provides you with several security options and ensures that your network will not be compromised by a carelessly handled password.

NMAS supports NetWare 5.1 and higher, Windows 2000/NT, Windows 98/95, Linux, Solaris, and AIX. It also requires a Pentium 200MHz processor or higher.

Previous Contents Next