concept_ident_pro.htm [plain text]
<html>
<head>
<title>Network Identity Manager Concepts: Identity Provider</title>
<meta name="description" content="NetIDMgr Concepts: Identity Provider">
<meta name="keywords" content="identity provider, concepts">
<link rel="stylesheet" type="text/css" href="nidmgr.css">
</head>
<body>
<h1>Network Identity Manager Concepts: Identity Provider</h1>
<p>
Network Identity Manager relies on plug-ins to provide the majority
of its functionality. One of the requirements is that there be at
least one plug-in that is registered as an <strong>identity provider</strong>. The identity
provider:</p>
<ul>
<li>defines the identity</li>
<li>provides the engine that drives the <i>Obtain New Credentials</i> dialog</li>
<li>performs the initial authentication which results in a network credential that
can be used in conjunction with subsequent credential providers</li>
</ul>
<p>Naturally, the identity provider plug-in that is distributed with MIT Kerberos for Windows
is Kerberos v5 based and obtains Kerberos v5 ticket granting tickets as the network credential
that represents the identity.</p>
<img src="images/screen_config_ident_provider.png">
<p></p>
</body>
</html>