The HP CIFS server product consists of Samba source code which
has been enhanced with a variety of functional enhancements. The
sections that follow will provide an overview of each of these enhancements.
In some cases, separate sections
of information will be provided. One section will be for version
A.01.07 of the server and another for version A.01.08. Be sure that
you are reading the information appropriate for your version. The
sections are:
Access Control List (ACL) Mapping
Features for version A.01.07
Access Control List (ACL) Mapping Features for version
A.01.08
NT Printing Support (new for version A.01.08)
Distributed File System (DFS) Server Functionality
(new for version A.01.08)
Primary Domain Controller (PDC) Functionality (new
for version A.01.08).
Access
Control List (ACL) Mapping Features (version A.01.07) |
 |
The HP CIFS server product consists of Samba source code which
has been enhanced with ACL (Access Control List) mapping features.
These mapping features allow you to change ACLs from an NT client.
These features include:
Improved access to UNIX permission
data through the NT ACL graphical interface on NT clients.
Access to VxFS POSIX ACLs through the NT ACL graphical interface
on NT clients.
Samba supports the viewing and changing of UNIX file permissions
and VxFS POSIX ACLs from Windows NT clients.
You can view and change UNIX file permissions through the
standard Windows Explorer interface when accessing NT ACLs.
Refer to Chapter 2 in this document for detailed information
about configuring ACL support.
Refer to Chapter 3 in this document for more detailed descriptions
of UNIX file permissions and of VxFS POSIX ACLs.
In addition, HP CIFS works with CIFS UNIX extensions. For
more information about CIFS UNIX extensions, refer to the Installing
and Administering HP CIFS Client manual.
Access
Control List (ACL) Mapping Features (version A.01.08) |
|
HP enhancements to the HP CIFS Server for version A.01.08
include all those for the previous version (A.01.07 - see the previous
section), plus the following:
This
version provides a share level variable called “nt acl
support” which allows users to turn ACL support on or off,
on a per-share basis. Previous versions (A.01.07 and earlier) used
a parameter called “acl schemes” to configure
ACL support. This is no longer used.
Support for NT Access Control Lists (ACLs) on printer
objects. See the next section.
Refer to Chapter 2 in this document for detailed information
about configuring ACL support.
NT
Printing Support (version A.01.08) |
|
These enhancements are new for version A.01.08. The HP CIFS
Server now provides the following NT printing functionality:
Printer driver files may be downloaded
to Windows NT, 2000 and XP clients that do not have them
Printer driver files may be uploaded from a Client’s
disk to a HP CIFS Server that does not have them. This is done using
the Windows NT, XP or Windows 2000 Add Printer Wizard
For detailed information about configuring printer support,
please refer to Chapter 2 in this document.
Distributed
File System (DFS) Server Functionality (version A.01.08) |
|
These enhancements are new for version A.01.08. The HP CIFS
Server now provides the following DFS functionality:
A HP CIFS Server can act as a Distributed
File System (DFS) server
The Distributed File System (DFS) provides a way
to separate the logical view of files and directories that users
see from the actual physical locations of these network resources
The DFS tree allows users to easily access any particular
resource on the network server
The HP CIFS DFS tree is accessible from the following
types of DFS-aware clients:
Windows NT
Windows XP |
| Windows 2000 |
A DFS root directory can host DFS links in the form
of symbolic links which point to other servers
For detailed information about setting up DFS support, please
refer to Chapter 2 in this document.
Primary
Domain Controller (PDC) Functionality (version A.01.08) |
|
These enhancements are new for version A.01.08. Please refer
to Chapters 4 and 5 in this document for detailed information about
setting up and configuring a PDC. The HP CIFS Server now provides
the following PDC functionality:
Continue the support for joining a
Samba server to the Windows NT domain as a member server
Provide the ability to act as a Primary Domain Controller
(PDC) for Windows clients which include Windows NT, XP and 2000
Support the Domain logon feature for Windows NT
4.0 SP3+, Windows XP and Windows 2000 clients
Support for Windows NT group and username mapping
Support Windows NT logon scripts
View resources on a Samba PDC using Microsoft’s “Server
manager for Domain” tool
Support local and roaming profiles
Support the specified logon home share to a Samba
server
Exceptions:
Version A.01.08 of the HP CIFS Server does not support Security Accounts
Manager (SAM) databases (containing NT user account information)
nor does it provide any Backup Domain Controller (BDC) features,
and will not support BDCs in a domain in which it is serving as a
PDC.
Advantages
of the Domain Model
The Windows NT domain model provides a number of advantages:
Windows NT administrators may
group workstations and servers under the authority of a domain controller
Domain member servers may be centrally administered
by using domains to group related machines
The domain controller can be a central machine which
performs all user logons and authentication
Primary
Domain Controllers
The Primary Domain Controller (PDC) is responsible for several
tasks within the domain. These include:
Authenticating user logons for users
and workstations that are members of the domain
Acting as a centralized point for managing user
account and group information for the domain
A user logged on as the domain administrator can
add, remove or modify account information on any machine that is
part of the domain
A domain member server can be a Windows
NT Server, a Windows NT workstation, a Windows 2000 or XP machine
or a HP CIFS machine
Users on a domain member machine can access network
resources within the domain. Some examples of these resources are
file and printer shares and application servers
Domain member servers do not participate in authenticating
user logons
Printable version
