Users are authenticated |
Yes |
GUI and command line login utilities support authentication of NCP and LDAP connections via user authentication into eDirectory. NCP protocol authentication is supported via RSA and LDAP authentication is supported via SSL and Simple Bind protocol. |
Servers, devices, and/or services are authenticated |
Yes |
Connections to servers are authenticated via user-supplied credentials. No device authentication is supported directly by the Client. |
Access to information is controlled |
Yes |
The product’s Virtual File System (VFS) component (located in Linux Kernel space) is the gatekeeper for enforcement of access controls to Novell file systems. |
Roles are used to control access |
No |
No explicit use of roles is included in this product. eDirectory alias objects can be created, but this is not considered true role-based access and is not specifically supported or administered through this product. |
Logging and/or security auditing is done |
No |
Security logging and auditing features are not supplied by nor supported by this product. |
Data on the wire is encrypted by default |
No |
No wire encryption is supplied by this product. |
Data stored is encrypted |
No |
This product does not provide long-term storage of data. |
Passwords, keys, and any other authentication materials are stored encrypted |
Yes |
Passwords and other authentication materials in temporary storage are encrypted to prevent in-memory scanners. |
Security is on by default |
Yes |
There are no configuration options to enable or disable with the exception of packet signing. Packet signing is enabled by default. |
FIPS 140-2 compliant |
No |
This product currently uses the ATB (authentication toolbox) instead of the Novell NICI product. Therefore, this product is not FIPS 140-2 compliant because ATB itself is not FIPS-compliant. |