OneFS Unified Security Model

In this Knowledge Sharing article, Steffen Thuemmel presents a four-part series which explains AIMA (Authentication, Authorisation, and Identity Management), with the focus on practical usage.

Part 1 deals mainly with User Authentication and explains how OneFS uses a data object called Access Token to represent a file system user.

Part 2 explains different authorization approaches introduced by different file systems and network file system protocols (SMB, NFSv3, NFSv4).

Part 3 covers different deployment approaches in multiprotocol environments and demonstrates the flexibility of OneFS with its capability to communicate simultaneously with a number of different authentication providers.

Part 4 is dedicated to an advanced deployment of multiprotocol security. It shows how to make use of improved security built into NFSv4.

Read the full article.