ACE |
Access Control Entry: an entry in an Access Control List (ACL). It specifies an actor (e.g. a user or group) and the kinds of access that the actor has to a particular resource. |
ACEE |
Access Control Environment Element: on the mainframe, a data structure that contains access control information for a task; in MF Server, a data structure that holds security information for a user (or potentially other actor). |
ACL |
Access Control List: a rule specifying what actors (typically users and groups) are allowed what kinds of access (e.g. read, update) to a resource (file, transaction, configuration object, etc). (Some ESMs may not implement ACLs as such, but they provide an equivalent scheme.) |
Auditing |
Auditing refers to collecting information on security-related events and preserving it in for later review. |
ESF |
The Micro Focus External Security Facility, which relays security queries to external security managers. This facility can run within both Enterprise Server and MF Directory Server. |
ESM |
External Security Manager: any system outside MF Server that can respond to security queries. It might be the OS itself, or an LDAP server, or some other facility. |
ESM Module |
A loadable module which MF Server can use to connect to an ESM and issue security queries against it. |
LDAP |
Lightweight Directory Access Protocol: a standard for configuration-data directories, particularly user directories. Microsoft Active Directory is an LDAP implementation. |
LDIF |
LDAP Directory Interchange Format: a standard for transporting LDAP data and schema definitions between LDAP servers. |
MLDAP ESM module |
The Micro Focus ESM module that the External Security Facility uses to connect to LDAP servers. |
Resource |
Any item to which access is controlled. A resource has a name and a class. A resource name is unique within its class. |
schema |
In LDAP, the organization of information in the directory. The schema defines the types of configuration objects, their attributes, and their relationships. |
SNMP |
Simple Network Monitoring Protocol: a standard protocol for communicating system status and administration information. SNMP clients (usually called "agents") send information about changes in system status ("alerts") to an SNMP server ("monitor" or "manager"). They also respond to the monitor's queries for current status, and may be written to accept some administrative commands from the manager as well. The current version of SNMP is SNMPv3, which includes security provisions. |
Security Manager |
A definition within MF Directory Server that specifies the information (i.e. the ESM module and associated configuration information) that the External Security Facility needs in order to connect to an external security manager. |
SSL |
Secure Sockets Layer: the standard mechanism for secure per-conversation TCP/IP communications. |