The i-Planet Server

The i-Planet server handles all of the details of authorization, authentication, policy, and user profile access and management, which compose the i-Planet platform. It also handles the functionality of the i-Planet application server. Communication with the i-Planet server is generally through HTTP. If you have enabled SSL service from the i-Planet server to the i-Planet gateway, communication is through HTTPS. You have administrative access to the i-Planet administration screens through a web browser.

The i-Planet Platform Server

The i-Planet platform server is composed of several subsystems: authentication, authorization, and profile management. These subsystems handle the connections to outside services. Because these subsystems are independent browser links to the overall i-Planet product, you can incorporate many different technologies into your installation of the i-Planet software, without making major changes to the i-Planet server or to other i-Planet components.

The i-Planet server subsystems work together and interface with external data sources to manage the process of identifying users to the system, determining access rights, and providing that access. The platform-server subsystems are:

1. The authentication subsystem--deposits, manages, and clears cookies from end user's systems. It describes the physical and virtual connection from the end user's browser to the i-Planet server. In this way, it essentially authenticates each transaction.

2. The authorization subsystem--assures that end users have the correct permissions to use particular applications.

3. The profile-management subsystem--Stores application profiles and user profiles, as well as interfaces with external data sources, such as files and directory servers. Application profiles and user profiles declare the allowable set of roles that can be assumed by the authenticated user name. These profiles also contain additional user-specific application and personal information. For example, a user profile contains information about the user's identity.

i-Planet Application Server

The i-Planet application server can link to any TCP/IP accessible application on your intranet. The i-Planet product has a core set of applications that offer baseline remote access functionality, including viewing your group calendar and accessing email. By design, HTTP accessible applications, including any applications already running on your intranet, should work without modification. The i-Planet product has no specific requirements on how additional add-in applications are structured.

The i-Planet product comes with the following applications for end users:

• i-Planet Desktop--Provides access to all online help and a central access point for end users to obtain access to all i-Planet applications. Remote users can change their preferences from the i-Planet Desktop.

• NetMail --Provides full IMAP mail server access and offline reading capabilities.

• NetMail Lite--supports Sun Internet Mail Server (SIMS) without requiring support for Java applets.

• NetCalendar--Provides an HTML client calendar that supports CDE and the Sun Calendar server.

• NetSurf--Permits end users to look at certain web pages on your intranet.

• NetFile--Provides end users with additional, flexible remote access capabilities of your choice (including Telnet and remote X-Windows capabilities).

• NetFile Lite --Provides limited remote file system access without requiring a Java applet.

• Generate SKEYs--Allows users to generate their own S/Key passwords.