Skip directly to: News, Events, and Quick Links

Distauth: Glossary

Access Control

Provides access to authorized users while denying access to unauthorized users.

Andrew File System (AFS)

AFS is a distributed file system originally developed at Carnegie Mellon University as part of the Andrew Project. It is now supported and distributed under the name, openAFS. For more information, visit; http://www.openafs.org

Authentication

The process of determining the identity of a user that is attempting to access a system.

Authorization

The process of determining what types of activities is permitted. Usually, authorization is in the context of authentication: once you have authenticated a user, they may be authorized different types of access or activity.

Backup

The process of storing system and/or file information on tape or hard drives in case of loss or other catastrophic event.

Catastrophic Event

An event that causes loss or widespread destruction of Tier 1 computing systems and services.

Class Authorization Group

AFS allows users to define their own groups of users. Groups can be granted the same or different rights as other users without listing each user individually. Group members are identified by UCDLoginID.

Client/Server

A network arrangement with a server and one or more clients. Both the server and the clients are complete, standalone computers. The server provides resources such as data management and allows clients to share information with each other. Examples of client/server applications used at UC Davis include Banner and DaFIS.

Distributed Authentication (Distauth)

Represents UC Davis single sign-on solution and allows system administrators to restrict access to local Web content. It is originally developed and continually updated by UC Davis' developers. Distauth is used to access restricted sites such as library databases, class-related Web pages, site-licensed software, restricted departmental services, and UCD newsgroups.

Distributed File System

A system of computer stations in which processing, data storage, and accessibility to databases are shared. Distributed systems usually use some kind of client/server organization.

File Transfer Protocol (FTP)

File Transfer Protocol. A standard method of transferring files between computers over a network.

Mount

Make a file space (volume) available to an operating system.

Password Protection

The process whereby user passwords can be sent from the users computer to the appropriate server without risking detection and compromise by an unauthorized party.

Proxy

A software agent that acts on behalf of a user. Typical proxies accept a connection from a user, make a decision as to whether or not the user or client IP address is permitted to use the proxy, perhaps does additional authentication, and then completes a connection on behalf of the user to a remote destination, usually a server.

Server

The control computer on a local-area network (LAN). The server controls software, access to printers, and other parts or functions of the network. The server is usually connected to workstations that share the main system's resources. A network may have more than one server. A server may be dedicated, meaning its sole purpose is to be the server, or non-dedicated, meaning it can be used for basic computing as well.

UCDLoginID

A two- to eight-character name that a user gives to his/her computing account. Also known as access code, account, computing account, LoginID, Login name, usercode, or username.

Volume

AFS groups files into volumes, making it possible to distribute files across many machines and yet maintain a uniform name space. A volume is a unit of disk space that functions like a "container" for a set of related files, keeping them all together on one server.