Glossary
This glossary defines some of the common terminology related to network security
and CUWebAuth.
- Authentication
- In the context of CUWebAuth, authentication involves validating that a user
is who they say they are by providing their NetID and password..
- Authorization
- Authorization involves verifying that a user has sufficient rights to access
a resource. With CUWebAuth, you may specify a list of NetID's that can
access the resource or you may use one or more permits (permit server) to
determine access rights on the resource.
- CUWebAuth
- Web server extension that enables the web site to use Cornell central
authentication and authorization services..
- CUWebLogin
- This is a service that provides a web based login page and single-sign-on
functionality for Cornell web sites.
- keytab
- A keytab is a file that contains the Kerberos 5 key for your service.
- Kerberos
- Kerberos is a private key based network authentication system. Kerberos
is used by Cornell to provide a common authentication mechanism across the
university. From the user's perspective, a single NetID and password
provides access to many services across campus..
- NetID
- A NetID is a Kerberos name that is assigned to a person who is affiliated
with Cornell.
- ServiceID
- A ServiceID is a Kerberos name that is assigned to a service.
- srvtab
- A srvtab is a file that contains the Kerberos 4 key for your service.
