In this Knowledge Sharing article, Steffen Thuemmel presents a four-part series which explains AIMA (Authentication, Authorisation, and Identity Management), with the focus on practical usage.
Part 1 deals mainly with User Authentication and explains how OneFS uses a data object called Access Token to represent a file system user.
Part 2 explains different authorization approaches introduced by different file systems and network file system protocols (SMB, NFSv3, NFSv4).
Part 3 covers different deployment approaches in multiprotocol environments and demonstrates the flexibility of OneFS with its capability to communicate simultaneously with a number of different authentication providers.
Part 4 is dedicated to an advanced deployment of multiprotocol security. It shows how to make use of improved security built into NFSv4.