|
Consistent
user information is critical for proper security.
Yet, without a centralized data store, managing
user information across multiple applications
can be a manual, error-prone process that results
in inconsistencies. SmartDirectory enables VPN-1
gateways to leverage LDAP-based user information
stores, eliminating the risks associated with
manually maintaining and synchronizing redundant
data stores.
With Check Point's SmartDirectory,
VPN-1 gateways become full LDAP clients which
communicate with LDAP servers to obtain identification
and security information about network users.
SmartDirectory leverages the flexibility of the
LDAP protocol by extending the schema to include
all necessary user-level security elements. This
information is then available not only to VPN-1
gateways to enforce enterprise security policy,
but to any LDAP-compliant application, enabling
centralized user management throughout the enterprise.
|
