Home
Products
Authentication Services
Deployment Options Functionality Matrix

Quest Authentication Services Deployment Options

Functionality Matrix

Active Directory Support	Mapped User	Standard	Personality
Supports Win2K, Win2K3 at *ALL* forest functionality levels	x	x	x
Supports cross-forest trusts	x	x	x
Supports cross-domain trusts	x	x	x
Supports two-way, one-way and no-way trusts	x	x	x
Requires an AD schema modification		x*	x
Requires a Custom Schema Extension			x
*no modification required if the environment is running Windows Server 2003 “R2”

Host-based Access Control	Mapped User	Standard	Personality
Supports native AD Group Policies	x	x	x
Supports native AD ‘Logon To’ attribute	x	x	x
Supports allow/deny based on an AD group membership	x	x	x
Supports allow/deny based on an AD OUs	x	x	x
Supports allow/deny based on an AD domain	x	x	x
Supports allow/deny based on an individual user	x	x	x
Supports allow/deny based on service (ssh, ftp, etc.)	x	x	x

Advanced Feature Support	Mapped User	Standard	Personality
Enforces AD password policies on Unix, Linux, Mac	x	x	x
Supports user self-enrollment for migration	x
Supports permanent disconnected mode Patent Pending	x	x	x
Provides centralized identity management		x	x
Supports un-rationalized Unix environments	x	x	x
Supports identity mapping *See NIS Migration Support below	x	x	x
Supports secondary containers *			x

Application and Database Integration Support	Mapped User	Standard	Personality
Supports LDAP authentication on every Authentication Services platform	x	x	x
Includes an SDK for every supported platform	x	x	x
Supports PAM and Kerberos authentication	x	x	x
Supports an SAP-certified single sign-on solution	x	x	x
Supports single sign-on for Siebel on Unix	x	x	x
Supports Apache, Samba, OpenSSH, Sudo	x	x	x

Group Policy Support	Mapped User	Standard	Personality
Extends AD Group Policy to Unix/Linux/Mac Patent Pending	x	x	x
Supports ‘Computer’ Group Policies	x	x	x
Supports ‘User’ Group Policies	x	x	x
Supports ADM templates	x	x	x
Does not require ADM templates	x	x	x
Does not require Perl on the client to run Group Policy	x	x	x

NIS Migration Support	Mapped User	Standard	Personality
NIS proxy available on every supported platform	x	x	x
Supports the GUI NIS map import tool	x	x	x
Supports the NIS synchronization tool	x	x	x
Supports the GUI NIS map editor tool	x	x	x
Supports NIS map storage in AD	x	x	x
Provides a NIS proxy on every supported platform	x	x	x
Supports Netgroups in AD thru a NSS module (no proxy)	x	x	x
Supports caching of NIS maps on the client	x	x	x