MatchLogon Server
The MatchLogon Server provides secure matching of authenticators and the storage and retrieval of user credentials for Active Directory. With MatchLogon Server installed on a domain, administrators can centrally manage user accounts, authentication technologies, policies and rights. Credentials are centrally stored and provide users access from any workstation within the domain - logging on from any MatchLogon workstation using advanced technologies or from any workstation using a legacy password.
The MatchLogon Server can be installed both on the domain controller and member server, fully leveraging existing infrastructure investments thus avoiding the purchase of additional hardware and software servers.
Scalability and Load Balancing
MatchLogon can be scaled to domains of virtually any size. The presence of several instances of the MatchLogon Server provides multi-master clustering, automatic load balancing, hot-swapping, scalability and fault-tolerance.
MatchLogon provides powerful intelligent server search algorithms enabling client components to find and establish communication with the nearest MatchLogon Server available. If no MatchLogon Server was found in the scope of the site, the process of searching for a server continues within the domain of the organization.
Client/Server Communication
There are significant advantages to the MatchLogon architecture in terms of communication and configuration flexibility.
All sensitive information communicated between clients and servers is digitally signed and encrypted. MatchLogon uses the built-in Windows environment encryption layer provided by the Windows Remote Procedure Call (RPC). In addition, MatchLogon performs a two-way client-server validation with the help of the Windows Kerberos protocol prior to user authentication. In this process, the client is first authenticated by the server and then the server is authenticated by the client; thus facilitating mutual authentication of both end points and ensuring reliable and secure communication.
|
