Manualshelf

HP CIFS Windows 2000 Interoperability (October 2002)

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
21222324252627282930
CIFS/9000 and Windows 2000 Interoperability
Hewlett-Packard
27
Chapter 5 Active Directory Integration
Active Directory is the flagship of Microsoft’s Windows 2000 product. Although Active
Directory actually refers to the directory services and LDAP portion of the server feature set,
ADS incorporates a colossal assortment of client and domain management utilities.
However, the single most important element of deploying Windows 2000 ADS is the design of
the domain structure, and subsequently the design of the Advanced Directory schema. Once
the schema has been created, it can only be extended further it cannot be modified. So the
design must be done right the first time. The alternative is to re-install and start over.
The protocol that is used to access the Advanced Directory is the Lightweight Directory
Access Protocol LDAP. LDAP is based on the IETF RFC 2251, but is not strictly adhered to
by Advanced Directory. The RFC standard is important for multi-vendor integration,
because it provides a common protocol that can be used to read and write data to the
directory.
Integrating CIFS/9000 into the ADS primarily refers to storing user and group account data
that is required by the underlying UNIX operating system. The storage of this data is
defined and regulated by IETF RFC 2307 for POSIX attributes. This is the most important
specification for integrating UNIX and CIFS/9000 into the ADS.
5.1 Adding a CIFS/9000 Server to the Domain ADS
The first step for CIFS/9000 Server integration with the ADS is to add the computer to the
domain:
1. On the domain controller, go to Administrator Tools and pull down “Active Directory
Users and Computers.” Right click on Computers, choose New, and then Computer.
2. Enter the computer name.
3. The “pre-Windows 2000 computers” checkbox allows the Everyone group to be nested
under the “Pre-Windows 2000 Compatible Access” built-in group for the new
Computer object on the domain controller. This checkbox MUST be selected for the
CIFS/9000 Server computer to be successfully added to the domain.