HP CIFS Server 3.0f Administrator's Guide verison A.02.03
The CIFS Authentication with LDAP Integration
With LDAP integration, multiple HP CIFS Servers can share a single LDAP directory server for a centralized
user database management. The HP CIFS Server can access the LDAP directory and look up the windows
user information for user authentication. The figure 6-1 shows the CIFS authentication in the LDAP network
environment:
Figure 6-1 The CIFS Authentication with LDAP Integration
CIFS Server2
CIFS Server1
LDAP Directory
Server
Windows PCWindows PC
1
2
4
5
3
CIFS Protocol
LDAP Protocol
6
The following describes the message exchanges among the Windows PC, CIFS Server and LDAP directory
server for the user authentication shown on Figure 6-1:
1. A Windows user requests a connection.
2. The CIFS Server sends a challenge to the Windows PC client.
3. The Windows PC client sends a responsepacket to the CIFS Server based on the user password and
the challenge information.
4. The CIFS Server looks up the LDAP directory server for the user data and requests data attributes including
the password information.
5. The CIFS Server receives data attributes including the password information from the LDAP directory
server. If the password and challenge information matches with information in the client response
package, the Samba user authentication succeeds.
6. If the Samba user is authenticated and is successfully mapped to a valid posix user, the CIFS Server returns
a user token session ID to the Windows PC client.
80 LDAP Integration Support