Manualshelf

Samba on NonStop User Manual

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series
12345678910
User-level security: Authentication based on username/password and name of the client
machine.
Share-level security: Authentication based on password for each tree connection (share mount)
request.
Authentication based of domain security mode: Provides a mechanism for storing all user and
group accounts in a central, shared, account repository. The centralized account repository
is shared between domain (security) controllers.
Server security mode: When running in server security mode the NS-Samba server reports to
the client that it is in user-level security. The client then does a session set up. The NS-Samba
server receives the username and password from the client and uses the same credentials to
log in to the password server.
Password encryption: Based on the configuration, either the encrypted password or clear-text
password can be used for over-the-wire password transfer for a given authentication request.
Account information databases: NS-Samba supports two types of encrypted account information
databases, namely, smbpasswd and tdbsam.
Account management tools: smbpasswd and pdbedit are the two tools used in NS-Samba
for managing user and machine accounts.
The Samba Web Administration Tool (SWAT): The web-based interface that can be used to
facilitate the configuration of NS-Samba.
Group mapping: Creating associations between Windows group SIDs and POSIX group GIDs.
Logging/auditing: NS-Samba provides flexible logging mechanisms by means of different log
files and various log levels.
Remote and local management: NS-Samba provides the net command for remote and local
management.
Ancillary client programs: NS-Samba provides client programs such as testparm,
smbclient, smbcontrol, and so on.
NS-Samba Limitations
The following features are not available in NS-Samba:
Samba print service access to NonStop hosted printers.
Hosting Microsoft distributed file-system tree.
Authentication of clients logging onto a Windows domain using Kerberos and LDAP protocol.
Windows Internet Name Service (WINS) name-server resolution.
Changing the password associated with a user ID on a remote system running Samba or SMB.
A few options in the net command. Refer to the net manpage for details.
Samba is intended to be used to access files maintained by the OSS file-system. It is possible,
however, to access Guardian files via the /G directory. The following considerations and
restrictions apply when using Samba to access Guardian file-system files:
NS-Samba can be used to read/write unstructured files, such as files with file code 180.
NS-Samba will read/write Guardian structured files as byte streams, which will likely
yield undesired results. One such example is EDIT files (file code 101). NS-Samba can
be used to transfer unstructured files from/to the Guardian file-system.
File names must conform to Guardian file-system naming rules. As a result, it is not possible
to invoke some Windows explorer operations, for example “new file, in the Guardian
file system
10 Introduction