Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Benefit for authentication with Active Directory?
Operating Systems Solaris Benefit for authentication with Active Directory? Post 302239558 by Smith on Wednesday 24th of September 2008 02:58:53 AM
Old 09-24-2008
Benefit for authentication with Active Directory?
Hello all,

I heard that we can use Solaris to authenticate user with Active Directory. However, I do not see the point why we need to do that?? what's the benefit to authenticate user with Active Directory???

Example,
I have Solaris and I limited only 10 users can access Solaris production system. So, other users than these 10 users will not have any shell or have invalid home path. So, those unauthorize users cannot acces Solaris production system.

As far as I can see, if that user resigned then no one could reuse those user in Solaris anymore since that user is not valid when authenticate at Active Directory.

Can authenticate with Active Directory limit access to ROOT account? or any other topic please?
 

6 More Discussions You Might Find Interesting

1. Linux

How to Unite Redhat 9 Linux with Windows 2003 Active Directory authentication

Dear All, How to configure a Redhat 9 client to windows 2003 server. I have windows 2003 server which act has domain controller in my office. I have been asked to use redhat 9 has client. how to configure so that redhat 9 can authenticate with windows 2003 server .I have username created in... (0 Replies)
Discussion started by: solaris8in
0 Replies

2. SCO

Authentication problems with Active Directory/Samba/Winbind/Pam

Hi all. I'm having real trouble authenticating users against active directory for my SCO UnixWare 7.1.4 box running samba 3.0.24 (installed via Maintenance pack 4). I can list AD users/groups (after overcoming several hiccups) with wbinfo -g / wbinfo -u. I can use id to get a view an ad user ie:... (0 Replies)
Discussion started by: silk600
0 Replies

3. Red Hat

Active directory authentication in Linux client?

Hi All, I am a newb in this forums. I am a Linux admin and I hope I will get the solution here. In my company I have setup AD and I can authenticate the windows machines using this AD, also able to apply policy. Now I have installed some Linux machines but I can't able to authenticate via... (6 Replies)
Discussion started by: sahabcse
6 Replies

4. Solaris

solaris samba configuration without wins service from authentication window server/Active directory

Hi All, We are using solaris samba server for our company project to provide access to code to our development team.Recently our ICT has disabled wins service on Active directory due which user are not able to connect to samba share and they are getting error "No logon server available" as samba... (2 Replies)
Discussion started by: sahil_shine
2 Replies

5. UNIX for Dummies Questions & Answers

Connect via ssh using active directory authentication

I want to connect via SSH that will authenticate via active directory (domain controller). For example my network login in my workstation is user123/123user under a domain. I wanted to use this details to login via ssh. In this way I don't have to add and create username everytime in the server... (1 Reply)
Discussion started by: lhareigh890
1 Replies

6. AIX

Samba 3.6 on AIX 7.1 - Windows 10 Access to AIX file shares using Active Directory authentication

I am running AIX 7.1 and currently we have samba 3.6.25 installed on the server. As it stands some AIX folders are shared that can be accessed by certain Windows users. The problem is that since Windows 10 the guest feature no longer works so users have to manually type in their Windows login/pwd... (14 Replies)
Discussion started by: linuxsnake
14 Replies

LEARN ABOUT OPENSOLARIS

smb

smb(4)								   File Formats 							    smb(4)

NAME

       smb - configuration properties for Solaris CIFS server

DESCRIPTION

       Behavior of the Solaris CIFS server is defined by property values that are stored in the Service Management Facility, smf(5).

       An authorized user can use the sharectl(1M) command to set global values for these properties in SMF.

       The following list describes the properties:

       ads_site

	   Specifies the site configured in DNS to look up Active Directory information. An Active Directory site is the local Active Directory NT
	   domain name that has a different subnet controlling the Active Directory server.

	   The value should not be set if you do not have a local Active Directory site or if the same subnet is used by the local  Active  Direc-
	   tory NT domain. By default, no value is set.

       autohome_map

	   Specifies the full path for the autohome map file, smb_autohome.map. The default path is /etc.

       ddns_enable

	   Enables  or	disables dynamic DNS updates. A value of true enables dynamic updates, while a value of false disables dynamic updates. By
	   default, the value is false.

       keep_alive

	   Specifies the number of seconds before an idle SMB connection is dropped by the Solaris CIFS server. If set to 0, idle connections  are
	   not dropped. Valid values are 0 and from 20 seconds and above. The default value is 5400 seconds.

       lmauth_level

	   Specifies  the  LAN	Manager  (LM)  authentication level. The LM compatibility level controls the type of user authentication to use in
	   workgroup mode or domain mode. The default value is 3.

	   The following describes the behavior at each level.

	   2		In Windows workgroup mode, the Solaris CIFS server accepts LM, NTLM, LMv2, and NTLMv2 responses. In NT	domain	mode,  the
			SMB redirector on the Solaris CIFS server sends NTLM responses.

	   3		In  Windows  workgroup	mode, the Solaris CIFS server accepts LM, NTLM, LMv2, and NTLMv2 responses. In NT domain mode, the
			SMB redirector on the Solaris CIFS server sends LMv2 and NTLMv2 responses.

	   4		In Windows workgroup mode, the Solaris CIFS server accepts NTLM, LMv2, and NTLMv2 responses. In NT domain  mode,  the  SMB
			redirector on the Solaris CIFS server sends LMv2 and NTLMv2 responses.

	   5		In  Windows workgroup mode, the Solaris CIFS server accepts LMv2 and NTLMv2 responses. In NT domain mode, the SMB redirec-
			tor on the Solaris CIFS server sends LMv2 and NTLMv2 responses.

       netbios_scope

	   Specifies the NetBIOS scope identifier, which identifies logical NetBIOS networks that are on the same physical network. When you spec-
	   ify	a  NetBIOS scope identifier, the server is only able to communicate with other systems that have the same scope defined. The value
	   is a text string that represents a domain name and is limited to 16 characters. By default, no value is set.

	   Most environments do not require the use of the NetBIOS scope feature. If you must use this feature, ensure that you  track	the  scope
	   identifier assigned to each node.

       oplock_enable

	   Enables  or disables opportunistic lock (oplock) support on the Solaris CIFS server. A Solaris CIFS server grants an oplock to a client
	   process so that the client can cache data for while the lock is in place. When the server revokes the oplock, the  client  flushes  its
	   cached data to the server.

	   A value of true enables oplock support, while a value of false disables oplock support. The default value is true.

	   Oplocks  can  typically  be left enabled to obtain the performance benefits of client-side caching. In some circumstances, such as with
	   some database applications, the application vendor might recommend that client-side caching be disabled to ensure that transactions are
	   always committed immediately to the server.

       pdc

	   Specifies  the  preferred  IP  address  for	the domain controller. This property is sometimes used when there are multiple domain con-
	   trollers to indicate which one is preferred. If the specified domain controller responds, it is chosen even if the  other  domain  con-
	   trollers are also available. By default, no value is set.

       restrict_anonymous

	   Disables  anonymous	access	to  IPC$, which requires that the client be authenticated to get access to MS-RPC services through IPC$. A
	   value of true enables anonymous access to IPC$, while a value of false disables this anonymous access. The default value is false.

       system_comment

	   Specifies an optional description for the system, which is a text string. This property value might appear in various places,  such	as
	   Network Neighborhood or Network Places on Windows clients. By default, no value is set.

       wins_exclude

	   Specifies  a comma-separated list of network interfaces that should not be registered with WINS. NetBIOS host announcements are made on
	   excluded interfaces.

       wins_server_1

	   Specifies the IP address of the primary WINS server. By default, no value is set.

       wins_server_2

	   Specifies the IP address of the secondary WINS server. By default, no value is set.

ATTRIBUTES

       See the attributes(5) man page for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWsmbsu 		   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |Uncommitted		   |
       +-----------------------------+-----------------------------+

SEE ALSO

       sharectl(1M), smbadm(1M), smbd(1M), smbstat(1M), attributes(5), smf(5)

SunOS 5.11							    17 Nov 2008 							    smb(4)
All times are GMT -4. The time now is 03:24 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy