Table of Contents
Advertisement
eDirectory allows one Universal Password policy assignment per container. This means that if all of
your users reside in the same container, their passwords can be governed by either the AFP or the
CIFS policy, but not both.
Many organizations prefer to manage their users in a single container like the USERS container you
just created, and they need one Universal Password policy that supports all of the services their users
need.
3.6.1 Creating a Universal Password Policy to Support Both
AFP and CIFS
The AFP and CIFS default policies are almost identical, except that the AFP and CIFS proxy users
are allowed to retrieve passwords only in their respective policies.
You will now create a single password policy named File Services Policy that is based on the AFP
policy, and you'll grant the CIFS proxy user the ability to retrieve passwords along with the AFP
proxy user.
NOTE: Larger organizations often prefer to limit the number of proxy users to either a single user
or to one per service type, but that discussion is outside the scope of this document. For more
information, see
"Understanding Proxy
Guide.
1 In iManager, click the up-arrow
Description: Down Arrow icon
icon
next to Password Policies.
2 Click AFP Default Policy, then in the pop-up list click Copy Object.
3 In the Object Name field, type
Description: Browse icon
4 Click the down-arrow
Policies.
5 Click OK > OK.
6 Click the Roles and Tasks icon
7 Click Passwords > Password Policies.
8 Click File Services Policy.
9 In the Password Policies pop-up window, click the Universal Password tab, then click the
Configuration Options sub-tab.
10 Scroll down to the Universal Password Retrieval section.
11 Under Allow the Following to Retrieve Passwords, click Insert.
12 In the Object Selector, browse to the COMPANY > LAB > SERVERS container, click the
cifsProxyUser - server_name object, then click OK > OK > Close.
13 Do not close iManager. Continue with the next section,
Policy to the USERS
Container.
Users" in the
OES 2 SP1: Planning and Implementation
Description: Up Arrow icon
next to Security, then click the
File Services Policy
next to the Object Location field.
Description: Down Arrow icon
Description: Roles and Tasks icon
eDirectory, Users and Groups, and Identity Services
, click the down-arrow
Description: Down Arrow
, then click the Browse icon
next to Security, then click Password
Assigning the Universal Password
51
Advertisement
Chapters
Table of Contents
