Proxy Users And Passwords - Novell OPEN ENTERPRISE SERVER 2 SP2 - PLANING AND IMPLEMENTATION GUIDE 11-10-2009 Implementation Manual

Approach Licensing Impact
Per Tree One license
I.3.4 Proxy Users and Passwords
Proxy user passwords must be stored on the individual OES servers where the services are installed
because proxy users must be able to log in to eDirectory to perform their required functions.
"Auto-Generated vs. Specified Passwords" on page 269
"Passwords Are Stored on the Server" on page 269
"Avoid Password Expiration Problems" on page 270
Auto-Generated vs. Specified Passwords
Auto-Generated Passwords: AFP, CIFS, iFolder 3, NSS, and Samba use auto-generated
passwords by default.
This offers the highest security because the passwords are known only to the system. However,
this option generates one proxy user per service per server, and it is critical that the assigned
password policies not cause passwords to expire.
Manually Specified Passwords: For Archive and Versioning, DNS, DHCP, LUM, and
NetStorage, this is the only available option, and it applies to the other OES services in all but
the default (per service per server) installation scenario. It requires that someone keep track of
the proxy user names and passwords for installation purposes.
Passwords Are Stored on the Server
Of course all proxy user passwords are stored in eDirectory.
on the server and how they can be reset if needed.
Security Considerations
This exposes all OES services
and servers in the tree to any
security vulnerabilities.
Table I-7
System User and Group Management in OES 2 SP2 269
Manageability Considerations
This requires that a proxy user for
the tree is created before any
OES services are installed in the
tree.
This is suitable for organizations
that have
Centralized eDirectory
administration
Users that are not confined
to the partition or subtree
where the OES servers
reside, but instead access
different OES servers from
all over the tree.
The install admin must know the
proxy user's password.
explains where they are stored