Raritan Computer DKX416 User Manual

Chapter 3: Administrative Functions

169

Authentication vs. Authorization

When your device is configured for remote authentication, the external
authentication server is used primarily for the purposes of
authentication, not authorization.

Authorization is determined by the KX unit on the basis of user groups.
That is, once a given user is allowed to access the device in general
(authenticated), that user's specific permission (authorization) is
determined by the device, based upon the user's group.

The external authentication server can assist in authorization by
informing the device about the user group to which a user belongs
whenever the authentication server approves a given user's login
request. The sections Implementing LDAP Remote Authentication and
Implementing RADIUS Remote Authentication that follow explain this
in more detail.

The flow diagram illustrates the steps taken: