|
Users are authenticated |
Yes |
GUI and command line login utilities
support authentication of NCP™ and LDAP connections via
user authentication into eDirectory™. NCP protocol authentication
is supported via RSA and LDAP authentication is supported via SSL
and Simple Bind protocol. |
|
Servers, devices, and/or services
are authenticated |
Yes |
Connections to servers are authenticated
via user-supplied credentials. No device authentication is supported
directly by the Client. |
|
Access to information is controlled |
Yes |
The product’s Virtual File System
(VFS) component (located in Linux Kernel space) is the gatekeeper
for enforcement of access controls to Novell file systems. |
|
Roles are used to control access |
No |
No explicit use of roles is included
in this product. eDirectory alias objects can be created, but this
is not considered true role-based access and is not specifically
supported or administered through this product. |
|
Logging and/or security auditing
is done |
No |
Security logging and auditing features
are not supplied by nor supported by this product. |
|
Data on the wire is encrypted by default |
No |
No wire encryption is supplied by this
product. |
|
Data stored is encrypted |
No |
This product does not provide long-term storage
of data. |
|
Passwords, keys, and any other authentication
materials are stored encrypted |
Yes |
Passwords and other authentication materials in
temporary storage are encrypted to prevent in-memory scanners. |
|
Security is on by default |
Yes |
There are no configuration options to
enable or disable with the exception of packet signing. Packet
signing is enabled by default. |
|
FIPS 140-2 compliant |
No |
This product currently uses the ATB (authentication
toolbox) instead of Novell’s NICI product. Therefore, this
product is not FIPS 140-2 compliant because ATB itself is not FIPS-compliant. |