Re: Domains for UNIX

From: Darren Dunham (ddunham_at_redwood.taos.com)
Date: 04/14/04 

Date: Wed, 14 Apr 2004 15:33:34 GMT

Buckwheat <spam_me_gently_with_a_chainsaw@yahoo.com> wrote:
> As my email mentioned, what they have in mind is a technology like the
> Windows domains, not internet domains. Obviously, Solaris, as with all
> UNIXes has DNS.

> If you are not familiar with Windows Domains, they allow admins to manage
> all machines, users, and other resources within the domain as a group.
> Thus, if you are a domain admin, you will have admin rights on any machine
> that is a member of the domain. I would say that almost all UNIX machines
> have the ultimate superuser account "root". However, it isn't prudent to
> allow root access via telnet, rlogin, or even ssh.

> My colleagues want to establish what they call "UNIX domains", because they
> are Windows folks. I have said that there is no such thing that I know of.
> Of course, I am not the Oracle of Delphi or anything when it comes to UNIX.
> . .

Well, I would regard NIS, NIS+, and LDAP to all be "similar" to windows
domains.

You can share accounts and other information within the domain (like
lists of printers, automount points, user privliges via netgroups)

You could certainly create a NIS/NIS+/LDAP "root" account that would
give a domain "admin" full rights to any machine in the domain. Such
access could still be limited to local login followed by elevation
rather than direct login by the actual account. 

-- 
Darren Dunham                                           ddunham@taos.com
Senior Technical Consultant         TAOS            http://www.taos.com/
Got some Dr Pepper?                           San Francisco, CA bay area
         < This line left intentionally blank to confuse you. >

Relevant Pages

  • Re: Huge Planned Windope Migration Put On Hold!
    ... machines, using a ghosted image based upon the OEM version that ... this OEM version of XP pro, that I can't even begin to tell you. ... > improperly admined non-secure Windows systems, ... require user admin privileges to ...
    (alt.os.linux)
  • Re: Admin vs limited user account
    ... properly with limited user account (it does work fine with admin users). ... Quite simply, the application doesn't "know" how to handle individual user profiles with differing security permissions levels, or the application is designed to make to make changes to "off-limits" sections of the Windows registry or protected Windows system folders. ... "If your game or application works with admin accounts, but not with limited accounts, you can fix it to allow limited users to access the program files ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Huge Planned Windope Migration Put On Hold!
    ... machines, using a ghosted image based upon the OEM version that ... this OEM version of XP pro, that I can't even begin to tell you. ... > improperly admined non-secure Windows systems, ... require user admin privileges to ...
    (comp.os.linux.misc)
  • Re: Cryptogram Comment
    ... >> bother me with Windows questions. ... >> machines are broken. ... Just like if you don't know to tune up your car every year then you ... > and Linux and other open OS's make all patches FREE to redistribute. ...
    (sci.crypt)
  • What Does It Take to Get a PC With XP?
    ... I won't waste time rehashing the argument over whether Windows Vista ... that virtually every copy of Vista Business or Vista Ultimate Edition ... machines doesn't mean that its employees understand that policy. ...
    (misc.consumers)