HP CIFS Server 3.0d Administrator's Guide version A.02.02 (Edition 5)
LDAP Integration Support
Network Environments
Chapter 6116
CIFS Server Acting as Backup Domain Controller (BDC) to
Samba PDC
Since BDCs are also responsible for Windows authentication, HP CIFS
Servers configured as BDCs can access the LDAP directory for user
authentication. BDC configuration is vey similar to PDC configuration
with the exception that you set both master browser and domain
master to no.
CIFS Server acting as an Active Directory Service (ADS) Member
Server
ADS Member Servers use LDAP libriaries and Kerberos security to
access ADS Domain Controllers’authentication services. Therefore,
LDAP-UX Integration and HP Kerberos Client Library products are
required. See Chapter 5, “Windows 2000/2003 Domains,” on page 101 for
details.
Advance Server for UNIX/9000 (ASU) Servers
With LDAP integration, the centralized management of user data helps
you to migrate ASU to CIFS Server. ASU PDC servers can migrate users
to /etc/passwd entries using the migration help package available at
http:// software.hp.com. The HP CIFS Server provides the
/opt/samba/bin/syncsmbpasswd tool to create entries in the
smbpasswd file. With entries in the /etc/passwd and smbpasswd files,
you can consolidate both ASU users and UNIX users in an LDAP
directory using the migration scripts discussed later in this chapter.
Workgroup Model Networks
HP CIFS Servers configured with server mode security will attempt to
authenticate Windows users on the server specified. If LDAP is enabled,
then authentication will fall back to the LDAP server if the server mode
authentication fails.
HP CIFS Servers configured with share mode security may replace
smbpasswd with an LDAP directory server.
HP CIFS Servers configured with as stand-alone user mode servers may
replace smbpasswd with an LDAP directory server.