WINDOWS SECURITY AND DIRECTORY SERVICES FOR UNIX USING CENTRIFY DIRECTCONTROL
3
© CENTRIFY CORPORATION 2004-2005. ALL RIGHTS RESERVED.
PAGE 3
Software Prerequisites
To deploy the Centrify DirectControl solution for the End State, you need access to the
DirectControl software. The DirectControl software is available on a single CD-ROM. This
CD-ROM includes all of the software and documentation components referred to in this
document for both Windows and the various supported UNIX and Linux platforms. You
can either request an evaluation copy or purchase Centrify DirectControl licenses directly
from Centrify Corporation. The DirectControl evaluation license enables unlimited use of
the software for any number of computers and users for a 30-day period.
To contact Centrify, you can:
·
Visit the Centrify Web site:
http://www.centrify.com
.
·
Send e-mail to Centrify: info@centrify.com.
·
Call Centrify: 1-650-961-1100.
In addition to obtaining the DirectControl software, you must have Active Directory
configured and deployed to effectively implement this solution. For more information
about these prerequisites, see "Preparing Your Environment" later in this guide. For an
overview of the DirectControl solution and its components, see the next section,
"Overview of Centrify DirectControl Technology."
Overview of Centrify DirectControl Technology
The Centrify DirectControl solution integrates Windows and UNIX environments in a
unique way, giving Active Directory users and groups access to UNIX and Linux
resources and allowing UNIX users, groups, and computers to be imported into and
managed through Active Directory.
When you use DirectControl to achieve the End State, you can:
·
Specify which Active Directory users and groups can log on to a specific UNIX
computer or group of computers.
·
Control user access to UNIX computers across the entire Active Directory forest,
regardless of the organizational structure you use or where users are defined in that
structure.
·
Map local UNIX accounts, such as the root user, to Active Directory accounts for
centralized control over access and passwords.
·
Identify specific local UNIX accounts to be authenticated locally rather than through
Active Directory.
·
Migrate multiple existing UNIX account information stores into Active Directory, as
needed.
·
Enable authenticated users to connect to Web applications without being prompted
to log on again with their Active Directory credentials (single sign-on).
·
Take advantage of Microsoft's Group Policy to apply settings and controls for UNIX
users and computers.
To enable integration, Centrify DirectControl provides components that are installed in
the Windows environment and components that are installed on each UNIX or Linux
computer.