Home > Authenticating Windows
Information Security magazine:
EMAIL THIS

Authenticating Windows

27 Jul 2006 | Mark Diodati, Principle analyst, Burton Group

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

The eSSO client authenticates to Windows via GINA chaining or replacement. Organizations frequently use this option for stronger authentication methods not natively supported in Windows (for example, OTP or biometrics). The eSSO system manages the user's Active Directory username and password behind the scenes and replays it at the right time. For Windows Vista, eSSO vendors will need to make significant changes to the eSSO client, since GINA chaining or replacement will not be possible.

The eSSO client leverages the native Windows authentication. This option is frequently used when the organization wishes to make the eSSO software as unobtrusive as possible, and have lower authentication requirements (the exception here is smart cards, which are supported natively in Windows).

In kiosk-mode under a generic Windows identity, there is one Windows desktop and identity, and the workstation is shared by many users. The primary reason for this configuration is speed because the traditional Windows user logon, desktop rendering and logoff can take too long.

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


RELATED CONTENT
Platform Security Solutions
Windows security: Remote Desktop, hosts file and keyboard lock down
Debian: A niche OS with a not-so-niche security flaw
Sophos adds browser and virtualisation blocking features
Virtualisation success requires security preparation
Database patch denial: How 'critical' are Oracle's CPUs?
More built-in Windows commands for system analysis
Microsoft WIL: How to take control of data integrity levels
What are the dangers of using social networking sites?
Microsoft PatchGuard: Locking down the kernel, or locking out security?
OpenBSD: an untapped resource for tight security

Authentication and Authorization
Economic downturn raises risk of security breaches, insider fraud
Brits accept biometrics to prevent rise in identity theft
Setting up a remote access security policy
Integrating biometric authentication with Active Directory
Single sign-on implementation lets South Manchester doctors work more effectively
Identity management still eludes most companies
Smart card overcomes static PIN
Understanding multifactor authentication features in IAM suites
Bank security chief explains how to avoid internal threats
Malware infections down 60% at UK firms

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
Serious Organized Crime Agency  (SearchSecurityUK.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary


About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2008 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts