|
|
 |
|||
|
Glossary
Access Control List - see ACL. ACL - Access Control List. Two variations are known in context of this book. First, an ACL is a Windows NT access control list, which is basically a list of access control entries (ACEs). An ACL in a form known as Discretionary Access Control List (DACL) protects access to Windows NT securable objects. Second, an ACL may represent a public folder ACL. In this case an ACL is a MAPI table that lists MAPI PR_ENTRYIDs together with its access masks. The two ACLs serve a similar purpose, which is access control. However, implementation is totally different. Active Directory Browser (adsvw.exe) - a Microsoft tool used to browse Active Directory, which may also be used to browse other directories (Exchange Server 5.5). Active Directory Services Interfaces - see ADSI. ADSI - Active Directory Services Interfaces. A set of COM interfaces that wrap LDAP API to make it easier to use. ADSI is available for C/C++, VB, and VBScript users. ADSI is used to retrieve and modify contents of LDAP-compatible directories such as Windows 2000 Active Directory and Exchange 5.5 directory. ADSI Viewer - same as Active Directory Browser. adsvw.exe - see Active Directory Browser. cnonce - to be defined later. DACL - Discretionary Access Control List that is used in Windows NT security descriptors to allow or deny access to specific users. Forest - a collection of one or more domains. All domains in the forest share a single schema and a single Configuration container. The Configuration container has information about the network topology. IIS - Internet Information Server. This Microsoft product allows to connect your enterprise to the Internet or an intranet. IIS consists of the following three Windows NT services: World Wide Web Publishing Service, FTP Publishing Service, and Gopher Publishing Service. Also, Active Server Pages is a component of IIS. If you install Outlook Web Access on top of Active Server Pages in IIS, you can obtain remote access to Microsoft Exchange Server services through the Internet using only a browser. Internet Information Server - see IIS. ISAPI - Internet Server Application Programming Interface that allows to program IIS. For example, you can write an ISAPI DLL that processes user requests over the Internet. LDAP - light weight directory access protocol. An internet standard introduced in RFC 2251. The standard defines a communication protocol between a client application and an electronic directory (usually over TCP port 389). Light Weight Directory Access Protocol - see LDAP. MD4 - to be defined later. MD5 - to be defined later. nonce - to be defined later. RootDSE - also root DSE, or rootDSE. LDAP directory server specific entry located at the top of its information tree. This entry has a few attributes that provide general information about the directory in question such as its naming contexts and supported LDAP version. The section 3.4 of RFC 2251 defines this as follows: "An LDAP server MUST provide information about itself and other information that is specific to each server. This is represented as a group of attributes located in the root DSE (DSA-Specific Entry), which is named with the zero-length LDAPDN. These attributes are retrievable if a client performs a base object search of the root with filter "(objectClass=*)", however they are subject to access control restrictions. The root DSE MUST NOT be included if the client performs a subtree search starting from the root." DSA is an X.500 term for a directory server. Security Descriptor - a Windows NT security descriptor structure. Security descriptors protect access to Windows NT securable objects (such as files, or Microsoft Exchange Server directory objects). Security descriptor contains a Discretionary Access Control List (DACL) that specify users who are given or denied access. Each user entry is listed with an access mask telling what kind of access is granted or denied. Security Support Provider Interface - see SSPI. SSPI - TODO: add a definition here. VBScript - a subset of VBA, which is a subset of Visual Basic.
|
|