Active Directory is a Microsoft Windows proprietary directory service that provides centralized authentication and authorization for Windows clients. Administrators can use AD to define network-wide access rules as well as to distribute programs and updates.
Univention Corporate Server (see UCS) can act like an AD server when dealing with Windows systems. UCS can also join an AD domain of the same name as a member. AD then remains the leading directory service, and UCS gains limited access to the object data in the AD domain. Users and groups of the AD domain thereby gain access to applications of the Univention App Center (see Univention App Center).
For many apps from the Univention App Center (see Univention App Center), there are so-called appliances (see also Virtual Appliance) for different virtualization solutions, including KVM, VMware and VirtualBox. The appliance then contains a preconfigured UCS system (see UCS), a pre-configured app and the management system for administration.
The Dynamic Host Configuration Protocol is used to configure the network. A DHCP server sends an IP address, the netmask, and the gateway to a DHCP client upon request. This prevents users from setting up network interfaces manually.
Domain Name System, the “telephone book” of the internet. Devices receive one or more IP addresses (see also DHCP) via which they can communicate with each other. Since nobody can remember all of these addresses, there are telling names. For example, the name www.univention.de belongs to the IP address 18.104.22.168. DNS keeps a record of the assignments and can provide information about them – in both directions.
DNS is a large network of many servers on the Internet with a hierarchical structure. The servers synchronize their information with each other.
A domain is a local security sector in which resources and services are managed centrally. The members of a domain (users and groups, server and client computers) know and trust each other, while external systems and users remain outside. A domain is managed by the domain controller (see Domain Controller).
The DC manages and monitors a domain or its services that require authentication. Users and computers must first prove that they are members of a domain – only then can they access, for example, file and print services.
Groupware, also known as collaborative software, supports the collaboration of multiple users (even at different work stations), e.g. through shared calendars, work planners, online office programs, etc. The Univention App Center (see Univention App Center) also offers many groupware applications, including those that integrate with the UCS management system.
Also called Virtual Machine Motor (VMM, see also UVMM); a program that represents a virtualization layer and thus enables virtual machines (VM) and their control. All VMs share the hardware resources, e.g. CPU, memory and network cards.
Identity and access management; an IAM system manages users or their digital identities and authorizations centrally. An IAM system is an extension of an IdM system (see IdM), because it also regulates user access to certain services.
Identity Management administers resources and users, their data and accesses. If all employees (and thus also their rights and restrictions) are registered and managed from one central location, this increases security, among other things. Other goals are to reduce costs and downtime.
Local Area Network ( local or resident network ); a shared network, usually found in home networks and businesses. Many thousands of devices can be connected to the LAN, including computers, laptops, mobile devices, printers, and other network devices (wired or wireless). Wireless networks are called WLAN (see WLAN). LANs can also extend across multiple buildings and locations.
Lightweight Directory Access Protocol; a network protocol for querying and changing information in a distributed directory service. In the UCS management system (see UCS), an LDAP directory stores the administration-relevant data required domain-wide, including user costs, data from services such as DHCP (see DHCP), and so on. UCS opts for OpenLDAP.
Learning Management System; a complex content management system (CMS) that provides learning content and helps organize learning processes. An LMS can provide online courses and training materials, organize courses, and monitor learners’ successes.
Mobile Device Management is used for the central administration of mobile devices (smartphones, tablets and notebooks). This includes adding and removing devices to and from the network, delivering applications and apps, distributing updates, patches and settings, and more. The Univention App Center (see Univention App Center) also has a number of MDM solutions available.
Remote Authentication Dial-In User Service, a service for authenticating and authorizing users within a network. Only after users have successfully logged in, they gain access to the network and the services offered there.
The open source program suite Samba allows you to use Microsoft Windows file and print services on other operating systems, i.e. it integrates Linux and macOS computers in environments with the Active Directory directory service (see AD). Samba can assume the DC role (see Domain Controller).
Single sign-on is a process in which, after a single authentication, users gain access to all the computers, services and other resources for which they are authorized – without having to log in each time anew.
Univention Corporate Server is a Linux server operating system with an integrated identity and infrastructure management system (see IdM) that simplifies the administration of applications, users and resources. UCS supports many open standards and bundles several open source applications into one overall system (UCS management system). UCS can be easily integrated into existing environments. The App Center (see Univention App Center) contains many enterprise solutions that can be put into operation or run virtually with just a few clicks. In addition, there are comprehensive Active Directory functions (see AD) that can integrate UCS into existing MS Windows environments or replace them.
UCS@school is an identity and authorization management solution optimized for the education sector to centrally manage users, services, applications and digital media. Important basic services such as the provision of WLAN, authentication, printing or file storage are integrated. Other solutions such as eLearning, file sharing or email can easily be integrated into the management.
The Univention Management Console is the web-based, visual user interface for the administration of the entire domain. It is accessed through the portal page. Depending on the function of the system, different UMC modules are available for the administration of UCS and are supplemented by new modules when further software components are installed.
Univention App Center
The Univention App Center provides a wide range of applications from a variety of areas, including groupware solutions (see Groupware), backup, document and project management, and many more. The App Center also offers extensions to the Univention Corporate Server (see UCS), e.g. the Active Directory Connection (see AD), the Windows Member Server or UCS@school (see UCS@school). All apps can be installed with just a few clicks and conveniently managed using the UCS management system. Many apps are also available as ready-to-use appliances (see App Appliance).
UCS Virtual Machine Manager (UVMM); a tool for the central administration of virtual machines that are registered in the UCS domain. The Univention Management Console (see UMC) allows you to start, manage and remove all virtual machines.
Pre-installed and configured programs that are shipped with an operating system in a virtual machine.
Wireless Local Area Network (see LAN).