Specifications
Chapter 2 Setting Up and Managing Address Book Server 21
Choosing and Enabling Secure Authentication for Address Book
Server
Users authenticate to Address Book Server through one of the following methods:
 Kerberos v.5: This method uses strong encryption and is used in Mac OS X for single
sign-on to services oered by Mac OS X Server.
 Digest: (RFC 2617) This method sends secure login names and encrypted passwords
without the use of a trusted third party (like the Kerberos realm), and is can be used
without maintaining a Kerberos infrastructure.
 Any Method: This includes both Kerberos v.5 and Digest authentication. The client
can choose the most appropriate method for what it can support.
To choose an authentication method:
1 In Server Admin, select a server and select Address Book.
2 Click the Settings button in the toolbar.
3 Select the method from the Authentication pop-up menu.
4 Click Save, and then restart Address Book Server.
You can set the required authentication method using Server Admin. To enable the
highest security, choose a method other than “Any Method.”
Conguring and Enabling Secure Network Trac for Address Book
Server
When you enable Secure Sockets Layer (SSL), you encrypt all the data sent between
Address Book Server and the client. To enable SSL, you must select a Certicate. If
you use the Default self-signed certicate, a client must choose to trust the certicate
before it can make a secure connection. You can use a certicate on the server, or
choose to use a certicate on another computer.
To enable secure network trac using SSL transport:
1 In Server Admin, select a server and select Address Book.
2 Click the Settings button in the toolbar.
3 For SSL, select Use or Redirect.
4 Choose the certicate to be used for encryption.
5 Choose a TCP port for SSL to communicate on. The default port is 8443.
6 Click Save, and then restart Address Book Server.