HP CIFS Server 3.0k Administrator's Guide version A.02.04
The CIFS Authentication with LDAP Integration
With LDAP integration, multiple HP CIFS Servers can share a single LDAP directory server for
a centralized user database management. The HP CIFS Server can access the LDAP directory
and look up the windows user information for user authentication. The figure 6-1 shows the
CIFS authentication in the LDAP network environment:
Figure 6-1 The CIFS Authentication with LDAP Integration
CIFS Server2
CIFS Server1
LDAP Directory
Server
Windows PCWindows PC
1
2
4
5
3
CIFS Protocol
LDAP Protocol
6
The following describes the message exchanges among the Windows PC, CIFS Server and LDAP
directory server for the user authentication shown on Figure 6-1:
1. A Windows user requests a connection.
2. The CIFS Server sends a challenge to the Windows PC client.
3. The Windows PC client sends a responsepacket to the CIFS Server based on the user password
and the challenge information.
4. The CIFS Server looks up the LDAP directory server for the user data and requests data
attributes including the password information.
5. The CIFS Server receives data attributes including the password information from the LDAP
directory server. If the password and challenge information matches with information in the
client response package, the Samba user authentication succeeds.
6. If the Samba user is authenticated and is successfully mapped to a valid posix user, the CIFS
Server returns a user token session ID to the Windows PC client.
88 LDAP Integration Support