diff options
author | Gerald Carter <jerry@samba.org> | 2003-01-15 22:29:27 +0000 |
---|---|---|
committer | Gerald Carter <jerry@samba.org> | 2003-01-15 22:29:27 +0000 |
commit | 2a85f0cf33f303e091ce6f6bea7b7a072cd81c14 (patch) | |
tree | 0ab129510034a715a9c31ff1433db404ee1c1e26 /docs/htmldocs/securitylevels.html | |
parent | 3a5a4159882635800b57fc766c7d4e2ec0297bb9 (diff) | |
download | samba-2a85f0cf33f303e091ce6f6bea7b7a072cd81c14.tar.gz samba-2a85f0cf33f303e091ce6f6bea7b7a072cd81c14.tar.bz2 samba-2a85f0cf33f303e091ce6f6bea7b7a072cd81c14.zip |
syncing docs with HEAD
(This used to be commit d8fe70c3b4be548244e9d7b7ea533e64232df001)
Diffstat (limited to 'docs/htmldocs/securitylevels.html')
-rw-r--r-- | docs/htmldocs/securitylevels.html | 95 |
1 files changed, 27 insertions, 68 deletions
diff --git a/docs/htmldocs/securitylevels.html b/docs/htmldocs/securitylevels.html index b984426855..f1e9297fca 100644 --- a/docs/htmldocs/securitylevels.html +++ b/docs/htmldocs/securitylevels.html @@ -2,19 +2,22 @@ <HTML ><HEAD ><TITLE ->Security levels</TITLE +>User and Share security level (for servers not in a domain)</TITLE ><META NAME="GENERATOR" CONTENT="Modular DocBook HTML Stylesheet Version 1.77"><LINK REL="HOME" TITLE="SAMBA Project Documentation" HREF="samba-howto-collection.html"><LINK +REL="UP" +TITLE="Type of installation" +HREF="type.html"><LINK REL="PREVIOUS" -TITLE="Debugging Printing Problems" -HREF="printingdebug.html"><LINK +TITLE="Type of installation" +HREF="type.html"><LINK REL="NEXT" -TITLE="security = domain in Samba 2.x" -HREF="domain-security.html"></HEAD +TITLE="How to Configure Samba as a NT4 Primary Domain Controller" +HREF="samba-pdc.html"></HEAD ><BODY CLASS="CHAPTER" BGCOLOR="#FFFFFF" @@ -42,7 +45,7 @@ WIDTH="10%" ALIGN="left" VALIGN="bottom" ><A -HREF="printingdebug.html" +HREF="type.html" ACCESSKEY="P" >Prev</A ></TD @@ -56,7 +59,7 @@ WIDTH="10%" ALIGN="right" VALIGN="bottom" ><A -HREF="domain-security.html" +HREF="samba-pdc.html" ACCESSKEY="N" >Next</A ></TD @@ -71,61 +74,7 @@ CLASS="CHAPTER" ><A NAME="SECURITYLEVELS" ></A ->Chapter 8. Security levels</H1 -><DIV -CLASS="SECT1" -><H1 -CLASS="SECT1" -><A -NAME="AEN1089" -></A ->8.1. Introduction</H1 -><P ->Samba supports the following options to the global smb.conf parameter</P -><P -><PRE -CLASS="PROGRAMLISTING" ->[global] -<A -HREF="smb.conf.5.html#SECURITY" -TARGET="_top" -><TT -CLASS="PARAMETER" -><I ->security</I -></TT -></A -> = [share|user(default)|domain|ads]</PRE -></P -><P ->Please refer to the smb.conf man page for usage information and to the document -<A -HREF="DOMAIN_MEMBER.html" -TARGET="_top" ->DOMAIN_MEMBER.html</A -> for further background details -on domain mode security. The Windows 2000 Kerberos domain security model -(security = ads) is described in the <A -HREF="ADS-HOWTO.html" -TARGET="_top" ->ADS-HOWTO.html</A ->.</P -><P ->Of the above, "security = server" means that Samba reports to clients that -it is running in "user mode" but actually passes off all authentication -requests to another "user mode" server. This requires an additional -parameter "password server =" that points to the real authentication server. -That real authentication server can be another Samba server or can be a -Windows NT server, the later natively capable of encrypted password support.</P -></DIV -><DIV -CLASS="SECT1" -><H1 -CLASS="SECT1" -><A -NAME="AEN1100" -></A ->8.2. More complete description of security levels</H1 +>Chapter 6. User and Share security level (for servers not in a domain)</H1 ><P >A SMB server tells the client at startup what "security level" it is running. There are two options "share level" and "user level". Which @@ -211,7 +160,13 @@ smbpasswd file with SMB style encrypted passwords. It is cryptographically impossible to translate from unix style encryption to SMB style encryption, although there are some fairly simple management schemes by which the two could be kept in sync.</P -></DIV +><P +>"security = server" means that Samba reports to clients that +it is running in "user mode" but actually passes off all authentication +requests to another "user mode" server. This requires an additional +parameter "password server =" that points to the real authentication server. +That real authentication server can be another Samba server or can be a +Windows NT server, the later natively capable of encrypted password support.</P ></DIV ><DIV CLASS="NAVFOOTER" @@ -229,7 +184,7 @@ WIDTH="33%" ALIGN="left" VALIGN="top" ><A -HREF="printingdebug.html" +HREF="type.html" ACCESSKEY="P" >Prev</A ></TD @@ -247,7 +202,7 @@ WIDTH="33%" ALIGN="right" VALIGN="top" ><A -HREF="domain-security.html" +HREF="samba-pdc.html" ACCESSKEY="N" >Next</A ></TD @@ -257,17 +212,21 @@ ACCESSKEY="N" WIDTH="33%" ALIGN="left" VALIGN="top" ->Debugging Printing Problems</TD +>Type of installation</TD ><TD WIDTH="34%" ALIGN="center" VALIGN="top" -> </TD +><A +HREF="type.html" +ACCESSKEY="U" +>Up</A +></TD ><TD WIDTH="33%" ALIGN="right" VALIGN="top" ->security = domain in Samba 2.x</TD +>How to Configure Samba as a NT4 Primary Domain Controller</TD ></TR ></TABLE ></DIV |