Manualshelf

HP CIFS Server 3.0b Administrator's Guide version A.02.01.01

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
111112113114115116117118119120
NT Style Domains
Inter-Domain Trust Relationships
Chapter 4 99
Inter-Domain Trust Relationships
Trust relationships enable pass-through authentication to users of one
domain in other. A trusting domain permits logon authentication to
users of a trusted domain.
HP CIFS Servers support the following trust relationships:
An HP CIFS PDC Samba Domain may be a trusting, trusted, or
bi-directional trust (both trusting and trusted or “two way") domain
with an NT Domain.
An HP CIFS PDC Samba Domain may be a trusting, trusted, or
bi-directional trust domain with another Samba Domain.
An HP CIFS Member Server of either an NT Domain or Windows
2000/2003 Domain will respect any trust relationship established by
its domain controller.
An HP CIFS PDC Samba Domain does not permit trusts, whether
trusted or trusting, with a Window 2000/2003 Domain. A transitive
trust, in which domain A trusts domain B which trusts domain C thereby
domain A trusts domain C, is not permitted by an HP CIFS Samba
Domain.
Configuring Smb.conf for Trusted Users
HP CIFS Server requires an HP-UX local logon for all Samba users.
Therefore, even a trusted Samba user from another domain needs a
matching local POSIX user. To allow POSIX users to be added on-the-fly,
set the add user script smb.conf configuration parameter. For
Example,
add user script = /usr/sbin/useradd -g users -c \
"Auto_Account" -s /bin/false %u
Establishing a Trust Relationship on an HP CIFS PDC
With Another Samba Domain
This section decribes the procedures used to establish a trust
relationship on an HP CIFS PDC with anther Samba Domain.