Content deleted Content added
Line 27:
==Architecture==
The largest unit of management in DCE is a '''cell'''. The highest privileges within a cell are assigned to a role called ''cell administrator'', normally assigned to the "user" ''cell_admin''. Note that this need not be a real OS-level user. The cell_admin has all privileges over all DCE resources within the cell. Privileges can be awarded to or removed from the following categories : user_obj, group_obj, other_obj, any_other for any given DCE resource. The first three correspond to the owner, group member, and any other DCE principal respectively. The last group contains any non-DCE principal. Multiple cells can be configured to communicate and share resources with each other. All principals from external cells are treated as "foreign" users and privileges can be awarded or removed accordingly. In addition to this, specific users or groups can be assigned privileges on any DCE resource, something which is not possible with the traditional UNIX filesystem, which lacks ACLs.
'''HARSH'''
Major components of DCE within every cell are:
#The '''Security Server''' that is responsible for authentication
| |||