Home

This document is a cache from http://www.centrify.com/downloads/public/centrify_dc_solution_guide.pdf


Solution Guide: Windows Security and Directory Services for ...

Document source : www.centrify.com

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 All Pages

WINDOWS SECURITY AND DIRECTORY SERVICES FOR UNIX USING CENTRIFY DIRECTCONTROL
34
© CENTRIFY CORPORATION 2004-2005. ALL RIGHTS RESERVED.
PAGE 34
that you might have added manually. Because of this, DirectControl works seamlessly
with your existing Kerberos-enabled applications.
The following figure illustrates the NSS, PAM, and Kerberos services that are configured
and enabled as part of the DirectControl configuration.
Figure 1.12. NSS, PAM, and Kerberos Services Enabled by DirectControl
DirectControl daemons
The DirectControl software on the UNIX computer installs two daemons that start at
system startup. The first is adclient, which is the most important element in the Centrify
DirectControl Agent architecture. The second, adnisd, is an optional daemon to handle
servicing NIS requests.
adclient
The DirectControl adclient daemon manages all of the LDAP and Kerberos
communications between Active Directory and the UNIX computer on which the
daemon is installed. The adclient daemon performs several key tasks related to
synchronizing the local computer's time with the clock maintained by Active Directory.
Synchronization ensures that the timestamp on Kerberos tickets issued by the KDC
are within a valid range.
adnisd
The DirectControl adnisd daemon intercepts requests to a NIS server for directory
information and redirects these requests to Active Directory. Setting up and enabling
the DirectControl NIS Server is outside the scope of this guide. For more information
about configuring a UNIX computer with the DirectControl NIS Server, see the
Centrify DirectControl Administrator's Guide.
Joining the Active Directory Domain
After you install Centrify DirectControl on a Windows computer and install the
DirectControl Agent on one or more UNIX computers, you can join the UNIX computer to
any Active Directory domain in the forest and can use existing Active Directory groups

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 All Pages



Share |
    |     Download PDF



Summary :

Joining the Active Directory Domain After you install Centrify DirectControl on a Windows computer and install the DirectControl Agent on one or more UNIX computers, you can join the UNIX computer to any Active Directory domain in the forest and can use existing Active Directory groups


Tags : directory,actie,unix,daemon,centrify,computer,adclient,kerberos,nis,serer,adnisd,requests,serices




Terms    |    Link pdf-search-files.com    |    Site Map
   |    Content Removal Notice   
   |    Contact   

All books are the property of their respective owners.
Please respect the publisher and the author for their creations if their books copyrighted