HP CIFS Server Administrator Guide Version A.03.01.03 (5900-2006, October 2011)
Table Of Contents
- HP CIFS Server Administrator Guide Version A.03.01.03
- Contents
- About this document
- 1 Introduction to the HP CIFS Server
- 2 Installing and configuring HP CIFS Server
- HP CIFS Server requirements and limitations
- Step 1: Installing HP CIFS Server software
- Step 2: Running the configuration script
- Step 3: Modify the configuration
- Step 4: Starting HP CIFS Server
- Other Samba configuration issues
- 3 Managing HP-UX file access permissions from Windows NT/XP/2000/Vista/Windows 7
- Introduction
- UNIX file permissions and POSIX ACLs
- Using the Windows NT Explorer GUI to create ACLs
- Using the Windows Vista Explorer GUI to create ACLs
- POSIX ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- HP CIFS Server Directory ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- In conclusion
- 4 Windows style domains
- Introduction
- Configure HP CIFS Server as a PDC
- Configure HP CIFS Server as a BDC
- Domain member server
- Create the Machine Trust Accounts
- Configure domain users
- Join a Windows client to a Samba domain
- Roaming profiles
- Configuring user logon scripts
- Home drive mapping support
- Trust relationships
- 5 Windows 2003 and Windows 2008 domains
- 6 LDAP integration support
- Overview
- Network environments
- Summary of installing and configuring
- Installing and configuring your Directory Server
- Installing LDAP-UX Client Services on an HP CIFS Server
- Configuring the LDAP-UX Client Services
- Enabling Secure Sockets Layer (SSL)
- Extending the Samba subschema into your Directory Server
- Migrating your data to the Directory Server
- Configuring the HP CIFS Server
- Creating Samba users in directory
- Management tools
- 7 Winbind support
- 8 Kerberos support
- 9 HP CIFS deployment models
- Introduction
- Samba Domain Model
- Windows Domain Model
- Unified Domain Model
- 10 Securing HP CIFS Server
- 11 Configuring HA HP CIFS
- 12 HP-UX configuration for HP CIFS
- 13 Tool reference
- Glossary
- Index
Configuring krb5.keytab...................................................................................................112
9 HP CIFS deployment models....................................................................114
Introduction..........................................................................................................................114
Samba Domain Model..........................................................................................................114
Samba Domain components..............................................................................................117
HP CIFS Server acting as a PDC....................................................................................117
HP CIFS Server acting as a BDC...................................................................................117
HP CIFS acting as the member server.............................................................................118
An example of the Samba Domain Model...........................................................................118
A sample smb.conf file for a PDC..................................................................................118
Configuration options..................................................................................................119
A sample smb.conf file for a BDC..................................................................................120
Configuration options..................................................................................................120
A sample smb.conf file for a Domain Member Server.......................................................120
Configuration options..................................................................................................121
A sample /etc/nsswitch.ldap file...................................................................................121
Windows Domain Model......................................................................................................122
Components for Windows Domain Model...........................................................................123
An example of the ADS Domain Model..............................................................................123
A sample smb.conf file for an HP CIFS ADS Member Server.............................................123
A sample /etc/krb5.conf file........................................................................................125
A sample /etc/nsswitch.conf file...................................................................................125
An example of Windows NT Domain Model.......................................................................126
A sample smb.conf file for an HP CIFS Member Server.....................................................126
Unified Domain Model..........................................................................................................128
Unified Domain components.............................................................................................129
HP CIFS acting as a Windows 200x ADS Member Server................................................129
Setting up the Unified Domain Model.................................................................................129
Setting up LDAP-UX Client Services on an HP CIFS Server......................................................129
Installing and configuring LDAP-UX Client Services on an HP CIFS Server............................129
Configuring /etc/krb5.conf to authenticate using Kerberos...............................................130
Installing SFU 3.5 on a Window 2000 or 2003 domain controller.........................................130
An example of the Unified Domain Model...........................................................................130
A sample smb.conf file for an HP CIFS Member Server.....................................................131
A sample /etc/krb5.conf file........................................................................................131
A Sample /etc/nsswitch.conf File..................................................................................132
10 Securing HP CIFS Server........................................................................133
Security protection methods....................................................................................................133
Restricting network access.................................................................................................133
Using host restrictions..................................................................................................133
An example...........................................................................................................133
Using interface protection.............................................................................................133
Interface protection example....................................................................................133
Using a firewall...........................................................................................................134
Using an IPC$ Share-Based Denial................................................................................134
Protecting sensitive information..........................................................................................134
Encrypting authentication.............................................................................................134
Protecting sensitive configuration files.............................................................................135
Using %m Name Replacement macro with caution...............................................................135
Restricting execute permission on stacks..............................................................................136
Automatically receiving HP Security Bulletins............................................................................136
Reporting new security vulnerabilities..................................................................................136
Contents 7