Re: Domains for UNIX

From: Buckwheat (spam_me_gently_with_a_chainsaw_at_yahoo.com)
Date: 04/14/04 

Date: Wed, 14 Apr 2004 12:54:42 -0700

Cool, thanks.

BTW, I hope those aren't actually LEGOS(tm) in that image on the taos.com
homepage. You may end up having issues with the LEGO Corp unless you have
their permission to use their product. <G>

Peace.

"Darren Dunham" <ddunham@redwood.taos.com> wrote in message
news:iRcfc.36770$dR4.31701@newssvr29.news.prodigy.com...
> Buckwheat <spam_me_gently_with_a_chainsaw@yahoo.com> wrote:
> > As my email mentioned, what they have in mind is a technology like the
> > Windows domains, not internet domains. Obviously, Solaris, as with all
> > UNIXes has DNS.
>
> > If you are not familiar with Windows Domains, they allow admins to
manage
> > all machines, users, and other resources within the domain as a group.
> > Thus, if you are a domain admin, you will have admin rights on any
machine
> > that is a member of the domain. I would say that almost all UNIX
machines
> > have the ultimate superuser account "root". However, it isn't prudent
to
> > allow root access via telnet, rlogin, or even ssh.
>
> > My colleagues want to establish what they call "UNIX domains", because
they
> > are Windows folks. I have said that there is no such thing that I know
of.
> > Of course, I am not the Oracle of Delphi or anything when it comes to
UNIX.
> > . .
>
> Well, I would regard NIS, NIS+, and LDAP to all be "similar" to windows
> domains.
>
> You can share accounts and other information within the domain (like
> lists of printers, automount points, user privliges via netgroups)
>
> You could certainly create a NIS/NIS+/LDAP "root" account that would
> give a domain "admin" full rights to any machine in the domain. Such
> access could still be limited to local login followed by elevation
> rather than direct login by the actual account.
>
> --
> Darren Dunham ddunham@taos.com
> Senior Technical Consultant TAOS http://www.taos.com/
> Got some Dr Pepper? San Francisco, CA bay area
> < This line left intentionally blank to confuse you. >

Relevant Pages

  • Re: Local Accounts
    ... All 3 users had accounts on all 3 computers. ... Well maybe true but when the client machines were not in a domain we had sofware installed that we did not want to reinstall when on the domain. ... The local admin account can be useful for some system changes, ...
    (microsoft.public.windows.server.sbs)
  • Re: Anti-Virus Software Suggestions
    ... >>> with admin authority. ... All of my photo editing apps, as well as scanning programs work under ... except on the machine where I use different accounts. ... One of my machines operates unattended and in an environment where any ...
    (rec.photo.digital)
  • Re: Invisible Admin account
    ... if they are admin they can undo anything you ... or specific accounts log in with smart ... Short of hacking your machines up with your own rootkit-like ... Adminstrator account that another user with administrator access could not ...
    (microsoft.public.win2000.security)
  • Re: Domains for UNIX
    ... > Windows domains, not internet domains. ... > all machines, users, and other resources within the domain as a group. ... > Thus, if you are a domain admin, you will have admin rights on any machine ... You can share accounts and other information within the domain (like ...
    (comp.unix.solaris)
  • Re: Users dont have permission to install software?
    ... > they do get the admin rights to their machines. ... We need another 'mode', such as 'install only mode', where a user can login ... Les Connor [SBS Community Member - SBS MVP] ...
    (microsoft.public.windows.server.sbs)