HP CIFS Server Administrator Guide Version A.03.01.03 (5900-2006, October 2011)
Table Of Contents
- HP CIFS Server Administrator Guide Version A.03.01.03
- Contents
- About this document
- 1 Introduction to the HP CIFS Server
- 2 Installing and configuring HP CIFS Server
- HP CIFS Server requirements and limitations
- Step 1: Installing HP CIFS Server software
- Step 2: Running the configuration script
- Step 3: Modify the configuration
- Step 4: Starting HP CIFS Server
- Other Samba configuration issues
- 3 Managing HP-UX file access permissions from Windows NT/XP/2000/Vista/Windows 7
- Introduction
- UNIX file permissions and POSIX ACLs
- Using the Windows NT Explorer GUI to create ACLs
- Using the Windows Vista Explorer GUI to create ACLs
- POSIX ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- HP CIFS Server Directory ACLs and Windows 2000, Windows XP, Windows Vista, and Windows 7 clients
- In conclusion
- 4 Windows style domains
- Introduction
- Configure HP CIFS Server as a PDC
- Configure HP CIFS Server as a BDC
- Domain member server
- Create the Machine Trust Accounts
- Configure domain users
- Join a Windows client to a Samba domain
- Roaming profiles
- Configuring user logon scripts
- Home drive mapping support
- Trust relationships
- 5 Windows 2003 and Windows 2008 domains
- 6 LDAP integration support
- Overview
- Network environments
- Summary of installing and configuring
- Installing and configuring your Directory Server
- Installing LDAP-UX Client Services on an HP CIFS Server
- Configuring the LDAP-UX Client Services
- Enabling Secure Sockets Layer (SSL)
- Extending the Samba subschema into your Directory Server
- Migrating your data to the Directory Server
- Configuring the HP CIFS Server
- Creating Samba users in directory
- Management tools
- 7 Winbind support
- 8 Kerberos support
- 9 HP CIFS deployment models
- Introduction
- Samba Domain Model
- Windows Domain Model
- Unified Domain Model
- 10 Securing HP CIFS Server
- 11 Configuring HA HP CIFS
- 12 HP-UX configuration for HP CIFS
- 13 Tool reference
- Glossary
- Index
5. The CIFS Server receives data attributes including the password information from the LDAP
directory server. If the password and challenge information matches with information in the
client response package, the Samba user authentication succeeds.
6. If the Samba user is authenticated and is successfully mapped to a valid posix user, the CIFS
Server returns a user token session ID to the Windows PC client.
Summary of installing and configuring
The following summarizes the steps you take when installing, configuring, verifying and activating
the HP CIFS Server with the LDAP support:
• Install Directory Server, if not already installed. See “Installing the Directory Server” (page
81).
• Configure Directory Server, if not already configured. See “Configuring your Directory Server”
(page 82).
• Install the LDAP-UX Client Services on an HP CIFS Server, if not already installed. See “Installing
LDAP-UX Client Services on an HP CIFS Server” (page 82).
• Configure the LDAP-UX Client Services on an HP CIFS Server, if not already configured. See
“Configuring the LDAP-UX Client Services” (page 82).
• Enable Secure Sockets Layer (SSL) if you want to use it. See “Enabling Secure Sockets Layer
(SSL)” (page 86).
• Extend the Samba subschema to the Netscape Directory Server, See “Extending the Samba
subschema into your Directory Server” (page 88).
• Migrate your data to your Directory Server. See “Migrating your data to the Directory Server”
(page 89).
• Configure the HP CIFS Server to enable LDAP support. See “Configuring the HP CIFS Server”
(page 92)
• Install your Samba Users to Directory Server. See “Creating Samba users in directory” (page
94).
Read subsequent sections of this chapter for more information on installing and configuring the HP
CIFS Server with the LDAP support.
Installing and configuring your Directory Server
This section describes how to set up and configure your Netscape/Red Hat Directory Server to
work with LDAP-UX Client Services and the HP CIFS Server.
See Preparing Your LDAP Directory for HP-UX Integration at http://docs.hp.com/hpux/internet,
for more information on directory configuration.
Installing the Directory Server
You need to set up the Netscape/Red Hat Directory Server if it is not already installed. HP
recommends that you install the HP Netscape Directory Server product, J4258CA, or HP Red Hat
Directory Server, NSDirSvr7. This product can be downloaded from http://software.hp.com. You
need to install it with the Netscape Directory Server product for HP-UX version 6.11/6.21 or HP
Red Hat Directory Server 7.0/7.1.
The posix schema is already installed if you have installed the Directory Server for HP-UX version
6.02 or later version. The schema is in the file /opt/ldapux/ypldapd/etc/
slapd-v3.nis.conf. For more information on the posix schema (RFC2307), see
http://www/ietf.org/rfc.html. RFC 2307 consists of object classes such as, posixAccount,
posixGroup, and so on. posixAccount represents a user entry from the /etc/passwd file.
posixGroup represents a group entry from the /etc/group file.
Summary of installing and configuring 81