HP Visualize J5000 hp enterprise file system: planning and configuring hp DCE/ - Page 143
Configuring Gateway Server Machines
View all HP Visualize J5000 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 143 highlights
The DFS/NFS Secure Gateway Configuring Gateway Server Machines Configuring Gateway Server Machines A Gateway Server machine provides authenticated access to the DFS filespace to users on NFS clients. You can configure any machine that is configured as a DFS client and an NFS server as a Gateway Server. Following successful configuration, the machine provides authenticated access to the DFS filespace, and it exports the root of the DCE namespace, /..., via NFS. You can configure multiple Gateway Server machines to provide DFS access from multiple sources. However, users do not randomly select Gateway Server machines from NFS clients. By default, users on an NFS client contact the Gateway Server machine that exports /.... to the client. If you want to balance the load among multiple Gateway Servers, you must configure your NFS clients so that each client mounts /.... from a different Gateway Server machine. (The "Configuring NFS Clients to Access DFS" section in this appendix provides information about configuring NFS clients.) Depending on how closely you want to control access to the DFS filespace, configure your Gateway Server machines in one of the following ways: • Configure the Gateway Server machines so that users cannot issue the dfs_login command to authenticate to DCE. This configuration allows system administrators to manage all DCE authentication from the Gateway Server machines. You can allow users to issue the dfsgw add command themselves, or you can limit use of the command to administrators only. To configure a Gateway Server machine without enabling remote authentication via the dfs_login command, follow the instructions in "Configuring a Gateway Server Without Enabling Remote Authentication." • Configure the Gateway Server machines so that users can issue the dfs_login command to authenticate to DCE. This configuration allows users of NFS clients to acquire their own DCE credentials from the NFS clients. To configure a Gateway Server machine and enable remote authentication via the dfs_login command, follow the instructions in "Configuring a Gateway Server and Enabling Remote Authentication." 143