这种身份验证模式将因环境而异。
This mode of authentication will vary depending on the environment.
应用程序服务器常使用这种身份验证数据来获得到Encina的连接。
The application server always USES this authentication data for obtaining a connection to Encina.
可以通过用户向站点提供x . 509证书来实现这种身份验证。
This can be done by the user supplying an x.509 certificate to the Web site.
这种身份验证类型能与不支持DATA_ENCRYPT身份验证类型的低级产品兼容。
This authentication type allows for compatibility with down-level products not supporting the DATA_ENCRYPT authentication type.
如果所有数据都是敏感的,那么应该选择DATA_ENCRYPT身份验证模式,这种身份验证模式会对客户机和服务器之间传输的很多数据进行加密。
If all of your data is sensitive, you might opt to choose the DATA_ENCRYPT authentication mode, which encrypts a lot of the data traveling between client and server.
在这种情况下,一定不能在资源上提供缺省身份验证信息。
In that case, you have to provide no default authentication information on the resource.
在这种情况下,当用户首次访问门户并请求一个受限制的应用程序或数据源时,CAS将执行身份验证。
In this case, cas will perform the authentication when the user first visits the portal and requests a restricted application or data source.
这种提供者接受某个令牌并从中推导出身份验证提供者可使用的登录数据。
This provider will consume some token and deduct logon data consumable by an Authentication provider from it.
这种技术组合可以降低使用相同底层安全机制实现多因素身份验证解决方案的风险。
This combination helps reduce the risks associated with systems exercising multifactor authentication solutions using the same underlying security mechanism.
本文描述如何设计和开发一种特定类型的安全性插件,这种安全性插件使用DB2数据库存储身份验证信息。
This article describes the design and development process of a specific type of security plug-in, one that uses a DB2 database to store authentication information.
在这种情况下,验证失败的原因是发生了跨域身份验证。
The trap here is in failing to recognize that cross-domain authentication is taking place.
这种方法包含了身份验证和授权。
This approach embodies both authentication and authorization.
但是在这种情况下,最好使用指向同一ldap的LDAP身份验证提供者,从而确保查找到正确的用户,因为任何映射都可能出错。
Ideally though, one would use an LDAP authentication provider pointing to the same LDAP in this case to ensure the correct user is looked up as any mapping incurs the potential for errors.
为了提高性能,这种方法应允许中间层重用相同的物理连接,而不需要重新在数据库服务器上对用户进行身份验证。
In order to maximize performance, the approach is to allow for the middle tier to reuse the same physical connection without the need to re-authenticate the user at the database server.
这种更改会反映在其他同样使用LDAP进行身份验证和授权的应用程序中。
This change is reflected in other applications that also use LDAP for authentication and authorization.
这种方法还允许方便地修改身份验证规则,所有感知PAM 的程序都会自动地应用新规则,不需要修改它们的代码。
This method even allows you to modify the authentication rules on the fly, because all PAM-aware programs start applying the new rules without the need for any changes in their code.
按照这种逻辑,提供者会触发身份验证舞蹈并获取 REMOTE_USER。
With this logic, the provider will trigger the authentication dance and retrieve REMOTE_USER.
因此,这种系统降低了使用单一安全机制实现两因素身份验证的风险。
Hence, such a system will mitigate the risk associated with the use of single-security mechanisms in both the factors in a two-factor authentication.
这种交互称为身份验证,显示在图1的下半部分。
This interaction is referred to as authentication and is shown in the bottom half of Figure 1.
这种相似性源于这样一个事实:DCE身份验证服务建立在KerberosV5的源代码之上。
This similarity is a result of the fact that DCE authentication service was built upon the source code for Kerberos V5.
图2和图3是一个虚拟的组织结构实现,采用这种实现的多租户身份验证过程如下。
Figures 2 and 3 represent a virtualized organization structure implementation, in which the authentication process in a multi-tenant context is as follows.
在按照这种方式实现的双因素身份验证系统中,Kerberos协议扮演双重角色。
In this way, you achieve a secure two-factor authentication wherein the Kerberos protocol plays a dual role.
这种攻击可以与应答攻击联合使用,以绕过身份验证,并且再加上单消息XDoS来增加其危害程度。
This attack can be combined with Replay attack to bypass authentication, and with Single message XDoS to increase its impact.
在这种情况下,DB 2使用客户端身份验证插件(即clientauth插件)找到发出命令的当前登录用户。
In this case, you have to employ the client-side authentication plug-in (also known as the client auth plug-in) to find out who is the current logon user that is issuing the command.
这种新的身份验证解决方案叫做BrowserID。
这种设置可以应用于采用OpenSSH公共密钥身份验证的DB 2UDBD PF。
This setup can be used along with DB2 UDB DPF for which OpenSSH public key authentication can be used.
您需要考虑这种可能性,因为您要将门户配置为在处理经过身份验证的请求时不会从用户概要检索首选区域设置。
You need to consider this possibility because you are configuring the portal so that it does not retrieve the preferred locale from the user profile in the case of authenticated requests.
使用这种插件身份验证的另一个优点是,任何身份验证数据(包括二进制数据)都可以在客户机和服务器之间传递。
Another advantage of using this type of plug-in authentication is that any authentication data (including binary data) can be transmitted between the client and the server.
在以这种方式使用时,尽管SSH仍然提供二元身份验证,但是SSH密钥不足以识别访问云实例的用户的身份。
However, while SSH still provides two-factor authentication, when used this way it is not sufficient to identify the individuals who are accessing the cloud instances.
通过这种方式,可以对标识进行身份验证,并在源和目标应用程序之间相应地映射,同时仍然与企业安全模型保持一致。
In this way, an identity can be authenticated and mapped appropriately between the source and target applications while still being consistent with an enterprise security model.
应用推荐