HP CIFS Server 3.0g Administrator's Guide verison A.02.03.01

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software

141

142

143

144

145

146

147

148

149

150

The Unified Domain Model provides the following benefits:

• Support for Windows domain member single sign on, network logon, and Windows and

UNIX account management system.

• Easy expansion capability.

Figure 9-9 shows the Unified Domain Deployment Model as follows:

Figure 9-9 Unified Domain

Windows

ADS DC/SFU

HP-UX

Client

HP CIFS

Windows

and UNIX

users

Member

Server

The Unified Domain Model consists of a Windows 200x server with Active Directory Services

(ADS) configured as a Domain Controller (DC), and a single or multiple HP CIFS member servers.

To use the Windows 200x ADS server as a data repository to consolidate Windows and UNIX

user accounts, you need to install the Services for UNIX (SFU) add-on package which extends

the Active Directory schema based on RFC 2307 to allow integration of POSIX attributes. All

user management is unified on the Windows 2000/2003 ADS Server; winbind is not required.

You must install and configure the LDAP-UX Integration software on your HP CIFS member

server. The LDAP-UX Integration software helps HP CIFS Server machine access UNIX user

account data from the ADS Server.

"LDAP-UX Client Service with Micrsoft Windows 2000 Active Directory Administrator's Guide",

available at http://docs.hp.com, provides help for HP-UX ADS client configurations.

Unified Domain Components

HP CIFS Acting as a Windows 200x ADS Member Server

The HP CIFS member server operating in a unified domain depends on the ADS to be aided by

Services For UNIX (SFU). SFU provides the required management of UNIX UID and GID to

Windows SID mappings. SFU and accompanying documentation is available for download at

http://www.microsoft.com/windows/sfu. Because all user management is unified on the Windows

2000/2003 ADS server, winbind is not required and there are no ID consistency issues regardless

of the number of HP CIFS member servers.

HP CIFS Server uses Kerberos security in a Windows Unified Domain setup. For more information

on how to join an HP CIFS Server to a Windows 200x Domain using Kerberos security, see

Chapter 5 “Windows 2000/2003 Domains”.

144 HP CIFS Deployment Models