|
|
 |
|
Quest Authentication Services Deployment OptionsFunctionality Matrix
|
Active Directory Support
|
Mapped User
|
Standard
|
Personality
|
|
Supports Win2K, Win2K3 at ALL forest functionality levels
|
x
|
x
|
x
|
|
Supports cross-forest trusts
|
x
|
x
|
x
|
|
Supports cross-domain trusts
|
x
|
x
|
x
|
|
Supports two-way, one-way and no-way trusts
|
x
|
x
|
x
|
|
Requires an AD schema modification
|
|
x*
|
x
|
|
Requires a Custom Schema Extension
|
|
|
x
|
|
*no modification required if the environment is running Windows Server 2003 “R2”
|
|
Host-based Access Control
|
Mapped User
|
Standard
|
Personality
|
|
Supports native AD Group Policies
|
x
|
x
|
x
|
|
Supports native AD ‘Logon To’ attribute
|
x
|
x
|
x
|
|
Supports allow/deny based on an AD group membership
|
x
|
x
|
x
|
|
Supports allow/deny based on an AD OUs
|
x
|
x
|
x
|
|
Supports allow/deny based on an AD domain
|
x
|
x
|
x
|
|
Supports allow/deny based on an individual user
|
x
|
x
|
x
|
|
Supports allow/deny based on service (ssh, ftp, etc.)
|
x
|
x
|
x
|
|
Advanced Feature Support
|
Mapped User
|
Standard
|
Personality
|
|
Enforces AD password policies on Unix, Linux, Mac
|
x
|
x
|
x
|
|
Supports user self-enrollment for migration
|
x
|
|
|
|
Supports permanent disconnected mode Patent Pending
|
x
|
x
|
x
|
|
Provides centralized identity management
|
|
x
|
x
|
|
Supports un-rationalized Unix environments
|
x
|
x
|
x
|
|
Supports identity mapping *See NIS Migration Support below
|
x
|
x
|
x
|
|
Supports secondary containers *
|
|
|
x
|
|
Application and Database Integration Support
|
Mapped User
|
Standard
|
Personality
|
|
Supports LDAP authentication on every Authentication Services platform
|
x
|
x
|
x
|
|
Includes an SDK for every supported platform
|
x
|
x
|
x
|
|
Supports PAM and Kerberos authentication
|
x
|
x
|
x
|
|
Supports an SAP-certified single sign-on solution
|
x
|
x
|
x
|
|
Supports single sign-on for Siebel on Unix
|
x
|
x
|
x
|
|
Supports Apache, Samba, OpenSSH, Sudo
|
x
|
x
|
x
|
|
Group Policy Support
|
Mapped User
|
Standard
|
Personality
|
|
Extends AD Group Policy to Unix/Linux/Mac Patent Pending
|
x
|
x
|
x
|
|
Supports ‘Computer’ Group Policies
|
x
|
x
|
x
|
|
Supports ‘User’ Group Policies
|
x
|
x
|
x
|
|
Supports ADM templates
|
x
|
x
|
x
|
|
Does not require ADM templates
|
x
|
x
|
x
|
|
Does not require Perl on the client to run Group Policy
|
x
|
x
|
x
|
|
NIS Migration Support
|
Mapped User
|
Standard
|
Personality
|
|
NIS proxy available on every supported platform
|
x
|
x
|
x
|
|
Supports the GUI NIS map import tool
|
x
|
x
|
x
|
|
Supports the NIS synchronization tool
|
x
|
x
|
x
|
|
Supports the GUI NIS map editor tool
|
x
|
x
|
x
|
|
Supports NIS map storage in AD
|
x
|
x
|
x
|
|
Provides a NIS proxy on every supported platform
|
x
|
x
|
x
|
|
Supports Netgroups in AD thru a NSS module (no proxy)
|
x
|
x
|
x
|
|
Supports caching of NIS maps on the client
|
x
|
x
|
x
|
|
|
|
|
|