摘要
大型企业中存在多种目录服务系统,当员工等信息需变更时,使用传统手工方式同步维护的管理方法,必须在各个目录服务系统中分别修改,往往造成成本的增加、数据一致性难以保证等问题。另外,企业的各应用系统都基于各自的用户身份数据来做认证服务的,每一位员工每天都需要登录各应用系统,须记住各个应用系统的不同的用户名、密码,那自然是极不方便的,必然会大大影响工作效率。如何解决各目录服务系统中用户数据同步管理的问题,及如何解决使各应用系统都基于统一的用户数据来做认证服务的问题,就迫在眉睫。文章提出了基于目录服务的统一用户身份管理的解决方案,其中使用一种即插即用的动态目录服务集成技术,和对目录服务操作的事务监视技术,有效地解决了上述问题。
There are many directory servers in major enterprises,therefore when the staff's information etc.needs to be varied,using traditionally-handed-synchronized maintenance they have to modify their data in every directory server, which usually cause increase of the cost and beget the data-differ.In addition the different appllcation-systems are based on the respective user-data for identification.Every day each staff has to logan different application systems,and has to memorize different usernames and passwords of different application systems,which is extremely inconvenient, and greatly affects work efficiency.So it is the most urgent matter to find out a solution to synchronize user data in different individual directory servers and also to find out a solution to provide identification based on the unified user data for application systems as soon as possible.In this paper we propose the solution of the unified user management based on the LDAP,using plug-in-and-play dynamic proxy integrated technique and the transaction process monitoring technique of directory server effectively solves the above-mentloned problems.
出处
《计算机工程与应用》
CSCD
北大核心
2005年第32期224-228,232,共6页
Computer Engineering and Applications
关键词
异构环境
用户管理
动态代理
事务服务
heterogeneous system,user management,dynamic proxy,transaction service
