|
|
Building and use of smaller computer networks
Kyzivát, Marek ; Pinkas, Otakar (advisor) ; Šmejkal, Ivo (referee)
The thesis describes the initial state of the computer network Basic Schools and Kindergartens Ohradní (ZŠMŠ Ohradní) in Prague 4 and then its reconstruction, which I largely contributed. ZŠMŠ Ohradní consists of four pavilions and from one building on the other side of the street. The aim of this study is to assess the initial state of the network and point out the shortcomings that we discovered. We found deficiencies in the operation stress tests, measurements and data cabling overall analysis. Original networks connectivity was 100Mb/s. Together with a colleague, we are network administrators. Furthermore, I am going to introduce a new form of network, which has identified deficiencies improved, by using on newer technologies. I will describe its structure, address allocation, active and passive components, and operated services. New network is capable of 1Gb/s, and its spine is going to be 10Gb/s soon. Benefits of this reconstruction is faster, more stable and more modern network that will facilitate the work of employees of ZŠMŠ Ohradní. To these improvements, I have mainly contributed by measurements. I participated in the design and implementation of new form of data network. I collaborated with fellow Poc to the configuration of active elements and network services in reconstructed network.
|
|
|
Active Directory Management Dashboard
Radimák, Samuel ; Křena, Bohuslav (referee) ; Fiedor, Tomáš (advisor)
This thesis is focused on the main concepts of Active Directory and the creation of an application allowing basic management tasks. It introduces the logical as well as physical components and provides an overview of existing servers that are using the services of Active Directory. The functionality of existing management applications is discussed and desired properties of management applications are discovered. On these grounds, a new application concept is introduced and the benefits of the new application over the existing ones is shown. According to the concept, a new application is developed supporting the management of users and groups and implementing additional features such as profile photo editing and a definition of customized object creation process. This application is also tested on different levels and possibilities of future improvements are given.
|
|
|
Efficient Transport of Electronic Mail with Microsoft Exchange Plugin
Jakubis, Tomáš ; Homoliak, Ivan (referee) ; Kováčik, Michal (advisor)
This project discusses optimization of e-mail and SMTP traffic in proprietary product of Microsoft Exchange 2013 in regard of marine industry. The goal is at first to analyze the requirements of this service on slow and unreliable network connections, SMTP traffic and then the product itself. Afterwards it defines specification for the final product and prepares the test environment. Design and implementation of transport agent using Exchange Management Shell is described for synchronization of two installations of Microsoft Exchange 2013; and focuses on emerged problems during the development, discusses different approaches and possible solutions. Testing shows various shortcomings of found solution. Finally, analysis of final solution shows possible future improvements and a need of security upgrade before applying to production environment.
|
|
| |
|
|
Single Sign-On in J2EE Web Applications Based on SPNEGO/Kerberos
Nečas, Tomáš ; Ráb, Jaroslav (referee) ; Ryšavý, Ondřej (advisor)
The dissertation deals with requirements, analysis, description and integration of Single Sign-On solution based on SPNEGO/Kerberos protocol. The thesis provides an overview of the Single Sign-On basic principles and concepts and deals with the Kerberos authentication mechanism in more detail. After introducing the fundaments of the Kerberos protocol, its terminology and common implementations, attention is focused on the services and settings of Microsoft Kerberos implementation in Windows 2000/2003 environment. An authentication solution demonstration is performed on J2EE platform using the authentication filter and plug-in. The thesis also includes a brief overview of integrating the Single Sign-On solution into different architectures of corporate information systems and describes the implementation process of this solution. In conclusion, the usability of Kerberos Single Sign-On solution in today's business sector is analysed.
|
|
|
Time-Based Account Policies in FreeIPA
Láznička, Stanislav ; Trchalík, Roman (referee) ; Očenášek, Pavel (advisor)
Tato práce se zabývá běžnými problémy časových politik, které jsou využívány v rámci procesu přihlašování uživatelů. Jsou rozebrána řešení v některých jiných současných systémech. Dále je čtenáři představen projekt pro správu identit FreeIPA, autor se zaměřuje hlavně na správu uživatelů a politiky pro jejich autorizaci. Je také představen projekt SSSD se zaměřením na jeho propojení se systémem FreeIPA. Po vytvoření návrhu řešení problému časových politik je tento návrh implementován do systémů FreeIPA a SSSD.
|
|
|
Design and implementation of security policies in the enterprise
Turecký, Zdeněk ; Bruckner, Tomáš (advisor) ; Vojtíšek, Vladimír (referee)
This bachelor thesis deals with unnecessary user rights in an enterprise. It judges their necessity and subsequent restrictions. At the beginning of the thesis are described two basic types of threats and business tools that help to prevent them. Further is introduced the specific company, where the analysis of current state of user rights is made. On its basis are created group policies, which are then implemented across enterprise infrastructure. Afterwards all problems, that appeared during the implementation or after that are commented and solved. Finally the new state is compared to the original one and some options how to expand this thesis are listed.
|
|
|
Configuration of Single Sign On against Active Directory in enterprise network
Křenek, Jan ; Pavlíček, Luboš (advisor) ; Bruckner, Tomáš (referee)
This work discusses about configuration and integration of Single Sign On against to Active Directory which serves as an authorization into web applications for Air Navigation Services, CZECH REPUBLIC by company Ifield Computer Consultancy Limited. Part of the work is performed the results of testing of the performance these two type of implementations for two different applications. For the theory part I've been using relevant literature, but for some tools, namely Scimark and JMeter, there is none, so I had to settle with internet sources. The main benefit of this thesis is the result of testing of comparison two different implementations of the Single Sign On generated using NTLMv2 and SPNEGO/Kerberos.
|
|
|
Identity Management Solution for Small and Medium Businesses
MAXA, Karel
The topic of this master's thesis is development of identity management solution for small and medium business. The thesis is divided into four major parts. The first part contains theoretical background as description of RBAC model or model with relationships between practically used objects (user identity, role, position, permission, account...). Analysis of functioning and needs of targeted organizations was carried out in the second part. The third part describes the design of the developed application. The fourth part discusses actual implementation of the application. The main outcome of the thesis is implemented application that can be deployed at thesis defined organizations. The application includes all the functionality required in the first phase of the project.
|
|
|
Usage of Microsoft SharePoint in small and medium business
Šimek, Jan ; Faina, Michal (advisor) ; Pospíšil, Jaroslav (referee)
This thesis focuses on the possible usage of Microsoft SharePoint in small and medium size companies. The main objective is to introduce a system that came brand new in 2010 and is called the Microsoft SharePoint Foundation and is precisely designed for the given segment of market. The thesis describes the technology with regards to the division of the market, current financial expenses for the company and procedures for obtaining the software. It also contains necessary hardware and software requirements to ensure performance and stability in relation to business processes. Following is the description of a fictitious company in which the system is introduced virtually from the basic product installation, division of the costs needed for training employees to post functionalities suitable for use in a given environment. I find the added value in the practical experience collected during my work on this project. In particular, during installation, set up of rights, simple integration with Active Directory, SQL, and the pre-defined business processes.
|
guest ::
