If your Domain controller is running Windows 2000 Server, the ASC Server can
be configured to utilize Microsoft’s Active Directory to obtain users and groups.
Both Domain and Server security modes can make use of Active Directory.
If you will be using Active Directory, you will need the following:
• Account for ASC - This account should have minimal security, similar to
that of the
guest
account (do not use an
Adm nistrator account
or
User
with admin strator rights
). The account will be used by ASC to access
the active directory that ASC will browse to identify the users/groups
that will have access to NAS shares. For a more secure account, you can
limit this account to have
read access
only to the Organizational Units
(OUs) that will be browsed by ASC.
i
i
• Your ASC Server and your Active Directory Server must have their
clocks synchronized to within five minutes of each other. If they are
not synchronized, you can use the
date
command on your ASC Server
(Linux or Solaris) to adjust the date and time. However, the system
clock on a PC can “drift” over time. Therefore we recommend that you
use an automated synchronization service to adjust the system’s clock.
Refer to the
nptd
service on Linux, or
xntpd
on Solaris, and the
Windows Time
service on Windows for more information.
• The following packages must be installed on a Linux ASC Server
before
enabling NAS:
cyrus-sasl-1.5.
x
.rpm
cyrus-sasl-gssapi-1.5.
x
.rpm
cyrus-sasl-md5-1.5.
x
.rpm
cyrus-sasl-plain-1.5.
x
.rpm
krb5-libs-1.2.
x
.rpm
openldap-2.0.
x
.rpm
You can get these packages from the appropriate directory on the ASC CD:
Utilities/kernel-2.4.21-ipstor/ActiveDirectory
Note: ASC does not support Active Directory's Nested Groups.
Acer Altos® NAS 700 Solution Guide
123