Sam1lbai
Muzykant
Dołączył: 18 Mar 2011
Posty: 624
Przeczytał: 0 tematów
Ostrzeżeń: 0/2
Skąd: England
|
 Wysłany: Wto 5:10, 22 Mar 2011 Temat postu: tory burch flat - require client certificates. |
|
|
The Process: Designing Authentication For Iis | A Business Article
,[link widoczny dla zalogowanych]
A certificate trust list (CTL) is a list of certificate characteristics that will allow a online MCTS certification??? http: //www. mcts-70-620. com?? �� to be accepted for authentication. A CTL is created only at the Web site level and thus is a good choice for use by departments or groups within an organization. For example, the research group at Wingtip Toys might specify that at the research Web site on an IIS server in the partner perimeter network, all certificates from the tailspin-toys. com domain be accepted. CTLs are not mapped to Windows user accounts. A CTL is created by using the New button on the Secure Communications dialog box to add certificates to the list. If this is the first CTL, you must select the Enable Certificate Trust List check box as well, as shown in Figure 13-13. Figure 13-14 shows the contents of the trust list"�"in this case, a single certificate.
Designing authentication for Web site access does not just involve providing access by the public to static Web pages. To select the proper authentication methods, you must evaluate access requirements for data access,[link widoczny dla zalogowanych], e-commerce, B2B e-commerce and other partner access, administration, and content management. Authentication design also involves designing authentication for other IIS servers, such as FTP sites and Web sites.
To design authentication for IIS, security designers follow a process like this:
1. Review or learn the authentication methods that are available 70-620 exam cost??? http: //www. mcts-70-620. com?? ��. As IIS evolves, authentication methods do as well. The security designer must know what the use of each method requires, as well as any caveats in its use.
2. Use best practices and guidelines regarding the use of IIS authentication to accomplish the following tasks:
a. Select authentication methods based on access requirements. Public access to public Web sites usually requires only anonymous authentication. Where Web site access includes access to or communication of sensitive information, you should use stronger authentication requirements.
b. Select authentication methods based on data to be accessed. The sensitivity of the data that will be accessed and communicated will dictate the methods of
authentication that can be used.
c. Select authentication based on network location of clients and Web servers. Access by clients on the intranet might require and allow different authenti?
cation methods than access by clients from the Internet or partner sites.
d. Select authentication methods based on client and server characteristics. Some authentication methods require specific clients; others, such as certifi?
cate authentication, require client certificates.
e. Select authentication methods based on your ability to change client, server,[link widoczny dla zalogowanych], and network characteristics. To implement secure access to intranet sites
from the Internet,[link widoczny dla zalogowanych], certificates might be required free Microsoft IT certification test questions??? http: //www. examshots. com/vendor/Microsoft-1. html?? �� for clients. This can necessitate changes to client operating systems, browsers, server configuration, and
network infrastructure.
.
相关的主题文章:
[link widoczny dla zalogowanych]
[link widoczny dla zalogowanych]
[link widoczny dla zalogowanych]
Post został pochwalony 0 razy
|
|
