You hit the nail right on the head as we say here in the States....
We recently met with a Novell SE and he espoused the same things you did.
You've been there and done this???
Option 2 gets my vote.... however I've been asked to conduct an experiment
with Option 1 in our lab. Yes Option 1 implies that every packet that comes
from the Filer is dissassembled on the Novell gateway machine and
reassembled outbound in the format defined. (NCP, HTTP, FTP and yes CIFS
and NFS!!!)
Sigh.... Onward....
-------- Original Message --------
Subject: RE: CIFS in Workgroup mode
Date: Wed, 16 Apr 2003 17:17:19 +1000
From: Alan McLachlan amclachlan@asi.com.au
To: Robert Borowicz rbaus@swbell.net, toasters@mathworks.com
CC: Dane Knudson DKnudson@asi.com.au
Robert,
One problem is that in workgroup mode NTFS security isn't available. In
fact, no real security is available...
There appear to be two options to using a filer in a Novell environment:
- The "gateway" Novell server approach. This involves using a Novell server
running Novell NFS Services (with lots of CPU and RAM) with a direct
back-to-back link to the filer to act as an I/O path. Clients and
application hosts only see the Novell server, while the filer thinks the
Novell server is a Unix NIS server that also happens to be it's only client
:o). Security is a subset of Novell permissions as available by mapping Unix
permissions. The drawback here is that the Novell server itself will be an
I/O bottleneck.
- eDirectory and Windows integration. For this you need a DC, as you have
identified. The Windows DC runs the Novell eDirectory client and the
security is synchronised with Novell Account Manager. All clients that need
to access the filer need to have the CIFS redirector running. Permissions
are mapped by Novell Account Manager.
An issue with approach 2 is that when passwords are changed by a helpdesk
directly in eDirectory, they may not be synchronised immediately. If anyone
has found a workaround for this please respond.
regards,
Alan.
-----Original Message-----
From: Robert Borowicz [mailto:rbaus@swbell.net]
Sent: Wednesday, 16 April 2003 6:26 AM
To: toasters@mathworks.com
Subject: CIFS in Workgroup mode
Does anybody run CIFS shares in workgroup mode? That is not
booted/authenticated with a PDC?
I have the joy of trying to make my machine work in a Novell environment
and no DC and would love to share ideas with other lucky souls like me....
TIA
-Bob Borowicz
**** ASI Solutions Disclaimer ****
The material transmitted may contain confidential and/or privileged
material and is intended only for the addressee. If you receive this in
error, please notify the sender and destroy any copies of the material
immediately. ASI will protect your Privacy according to the 10 Privacy
Principles outlined under the new Privacy Act, Dec 2001.
This email is also subject to copyright. Any use of or reliance upon this
material by persons or entities other than the addressee is prohibited.
E-mails may be interfered with, may contain computer viruses or other
defects. Under no circumstances do we accept liability for any loss or
damage which may result from your receipt of this message or any
attachments.
**** END OF MESSAGE ****
Robert Borowicz