Authentication

Confirm a user's identity using a set of credentials.

When a user logs in to the server, his or her credentials are verified with security providers. LDAP and Native OS expect a user name and password combination as credentials. Kerberos supports ticket-based authentication. RSA authentication requires a key alias, a keystore containing a private key, and the password of the keystore. Only one type of authentication can be configured in the server at a time.

The server authenticates the user when he or she provides the appropriate security credentials to the server. If authentication succeeds, the server considers the user a valid client, and login is completed. The user receives a session ID. In subsequent communication, the client uses the session ID to verify itself.

Access control and permissions are supported only with LDAP.

• RSA Authentication
  RSA authentication requires a set of private and public keys with an alias that functions as a user name.
• Configuring the Server for Kerberos
  To configure the server for Kerberos authentication, modify the csi.xml and csi_kerberos.xml files.
• Setting Environment Variables for Kerberos
  Some Generic Security Services Application Program Interface (GSSAPI) Kerberos implementations require that environment variables must be set to allow for ticket-based authentication. 
• LDAP Authentication
  LDAP is a user name and password authentication option that also allows access control.