HP StorageWorks 9000s NAS 4000s and 9000s Administration Guide - Page 111
User and Group Management, Domain Compared to Workgroup Environments
View all HP StorageWorks 9000s manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 111 highlights
User and Group Management 6 There are two system environments for users and groups: workgroup and domain. Because users and groups in a domain environment are managed through standard Windows NT or Windows Storage Server 2003 domain administration methods, this document discusses only local users and groups, which are stored and managed on the NAS device. For information on managing users and groups on a domain, refer to the domain documentation available on the Microsoft website. Domain Compared to Workgroup Environments NAS server devices can be deployed in workgroup or domain environments. When in a domain environment, the server is a member of the domain. The domain controller is a repository of accounts and account access for the NAS server. Client machines are also members of the domain, and users log on to the domain through their Windows clients. The domain controller also administers user accounts and appropriate access levels to resources that are a part of the domain. In a CIFS/SMB environment, when mapping a network drive or a client machine, a user sends a logon credential to the server. This credential includes the username, password, and if appropriate, domain information. Using the credential, the server authenticates and provides the corresponding access to the user. When a NAS server is deployed into a workgroup environment, all user and group account access permissions to file resources are stored locally on the server. By contrast, when a NAS server is deployed into a domain environment it uses the account database from the domain controller, with user and group accounts stored outside the server. The server integrates with the domain controller infrastructure. Note: The NAS server cannot act as a domain controller for other servers on the network. If user and group account information is stored locally, those accounts may be used only to authenticate logons to the NAS server, resulting in a workgroup configuration. Administering users and groups in a domain environment is similar in a mechanical sense to administering them in a workgroup environment. If using an Active Directory domain controller, the Computer Management tool allows for adding, modifying, and removing users in the same context as in a workgroup environment. The concepts, however, are very different. Additional information about planning for domain environments can be found at: http://www.microsoft.com/windowsserver2003/technologies/directory/activedirectory/default.mspx NAS 4000s and 9000s Administration Guide 111