Research And Implementation Of Digital Campus Authentication System

With the rapid development of network technology and the Digitalized Campus, various applications are used in Digitalized Campus and the services increase gradually. But independent certifications of the various application systems limit centralized management of the campus network, so users need to login and make identity authentication whenever they access a different application. Therefore, as an important part of the construction of Digital Campus, it is necessary to establish an unified identity authentication system, which could make a centralized management, authentication and authorization of network users.In this paper, unified identity authentication technologies both at home and abroad at this stage are analyzed and researched. The paper introduces the Lightweight Directory Access Protocol (LDAP) directory protocol is researched all round, and also the models of the LDAP, the availability of the LDAP directory is analyzed. And then the Kerberos is introduced, particularly the certification process of the Kerberos. A method integrating authentication mechanism named Kerberos with LDAP Protocol is proposed. The paper mainly completed the design of authentication server, realized user unified authentication and authorization by Authentication Server and Ticket Granting Service. Adopting the conception'Ticket', the system achieves. one-time grant mechanism and makes it easy for users and managements. The system supports the mutual authentication, and greatly improves the coefficient of security. At the same time, it needs one-time identity authentication adopted single sign-on and acquires all authorized service by the transparent logon. The system centralizes the loose users by Single Sign On technology, automates the user logon of the application service.We use Web Service as its developing foundation between components. This system uses Extensible Markup Language, Simple Object Access Protocol technology and implements identity authentication function using Tickets transmitting. In additional, the system can be integrated easily. With the unify identity authentication system being gradual and perfect, it will play an important role among the information security system of network, and network management will be simpler and effective.