The Integration of Network Service Authentication Design and Implementation for Secondary and Elementary School

Abstract

本研究以台灣目前國中小學的網路環境及需求為背景，探討校園中認證整合的問題。在基礎架構方面，我們以OpenLDAP整合校園中常用服務的認證機制：FTP、Samba、Open Webmail帳號﹔在管理實務上，我們發展管理者介面：AIM(Authentication Integration Manager)及一般使用者介面：SHS(Self-help Service)，藉此來同步OpenLDAP及SFS(School Free Software)學務系統、Moodle課程管理系統之間的認證資訊;除此之外，我們也經由中文化來導入LAM(LDAP Account Manager)，使得認證整合、密碼同步及帳號管理問題得以一併解決，將有助於增進校園資訊化的腳步及強化校園的資訊安全。

This research is based on the present network environment and demand for Secondary and Elementary school in Taiwan; it will discuss the authentication and integration in the campus. For basic frameworks, we used OpenLDAP to integrate the common used service authentication system: FTP, Samba, Open Webmail Account; as for the practical administration works, we developed administrator interface: AIM(Authentication Integration Manager), and common user interface3SHS (Self-help Service), by using this to synchronize the authenticated information of Openldap, SFS(School Free Software) Student Affair System and Moodle Course Management System. Apart from this, we also translated it into Traditional Chinese to lead in LAM(LDAP Account Manager), establish integrated authentication and password synchronization as well as resolved the problems of account management. This will help us to build up the steps for campus information technology and reinforce the campus information security.