Kamis, 14 Juli 2011

ACEs


Access control in its basic definition can be anything from scanning your work badge for permit into your employment facility to the old fashion way of handing in a movie ticket for theatre access. It’s the idea and process by which people are identified and granted certain access and in most cases privileges.

Furthermore, computerized access control systems can be security devices that monitor and control entry to a house, apartment, or building. Because keys are easily duplicated, these systems are the best way to keep track of who is entering the area.

When it comes to your business, access control can be designed to restrict access to your building complex in order to increase security and control. There are now access control systems that do away with keys all together and provide computerized trails of who and when someone enters your property.

Access control devices can range from simple electronic keypads that secure a single door to large networked security systems for multiple buildings that can include parking lot gates, integration with time and attendance systems, exit controls, telephone entry, and multiple other levels of security. If a business owner implements sophisticated access control, there should be no need to replace lost keys, track down keys from terminated employees, or wonder who has access to which areas.

If you are seriously considering applying electronic access control devices within your business then know that the local and state law likely will require certain standards which will cost you time and money.

Access control is also important when it comes to work computers and programs, as well as personal computers. Any computer that is networked to any outside source is vulnerable. That is why you can now guard computer and program access with passwords, fingerprint identification, and even more means such as voice recognition or even retinal scans.

Meanwhile, access control from a homeowner’s point of view does not have to be costly and can help prevent unauthorized access onto your property and uphold safety once inside. Such access control devices can be applied to locksets, entry and exit control, even TV and computer privileges.

One of the most common access control devices found in the residential area is an electronic entry gate. Even if you have fencing around your home, you should consider installing a security gate in which people must enter an access code in order to gain entry into your driveway and into your home

ACLs can be used to filter traffic for various purposes including security, monitoring, route selection, and network address translation. ACLs are comprised of one or more Access Control Entries (ACEs). Each ACE is an individual line within an ACL.

ACLs on a Cisco ASA Security Appliance (or a PIX firewall running software version 7.x or later) are similar to those on a Cisco router, but not identical. Firewalls use real subnet masks instead of the inverted mask used on a router. ACLs on a firewall are always named instead of numbered and are assumed to be an extended list.

Access Control Entries (ACEs) provide a mapping of user groups to containers. There are five types of ACEs:
User Explicitly identifies an individual user and overrides any other ACE.
Same company Identifies the host organization. This ACE, called People in my company in the Communicator user interface, typically resides in the Company Container. By default, every user in the organization is a member of the Company Container unless the user is explicitly given membership in another container. For example, in Figure 6 above, roy@contoso.com and carl@contoso.com have Team level access
Domain ACE Identifies all users who are members of a specified SIP domain. This ACE is called people in in the Communicator user interface. As shown in Figure 6 above, msn.com is a member of the Public Container, so every member of the msn.com domain can see the user information that is included in the Public Container.
Federation ACE Identifies all users from partner organizations that are federated with the host organization. This ACE is called people in domains connected to my company in the Communicator user interface. For details about federation, see the Microsoft Office Communications Server 2007 Planning Guide.
Public Internet connectivity (PIC) ACE Identifies all users who belong to supported public IM service providers, which can include the MSN network of Internet services, Yahoo!, and AOL. Public Internet connectivity requires a separate license. This ACE is called people in public domains in the Communicator user interface. For details, see the Microsoft Office Communications Server 2007 Planning Guide.

Tidak ada komentar:

Posting Komentar