Previous Topic: Name Resolution

Next Topic: Name Resolution on a Server: Deadlock

Endpoint Administration Guide for UNIXNIS ConfigurationName ResolutionName Resolution on an NIS/DNS Client

Name Resolution on an NIS/DNS Client

CA Access Control performs name resolution on a client‑only NIS or DNS station (which is not its own server) as follows:

  1. CA Access Control generates a network request to connect to the relevant server.
  2. The CA Access Control kernel extension intercepts the request.
  3. The CA Access Control kernel extension permits the request because it knows that the request was made internally by the CA Access Control process.
  4. A connection to the NIS or the DNS server is established and the information necessary for name resolution is retrieved.
  5. Once the name is resolved, CA Access Control continues the process of deciding whether to permit or deny the original access request.

A standard CA Access Control configuration is sufficient for CA Access Control to easily handle name resolution on a client server.