Solved

active directory under *nix

Posted on 2002-07-06
3
239 Views
Last Modified: 2010-04-20
Hello,

I have two questions to ask:

1) Windows2000 has "active directory" as one of its greatest features. Does it have a counterpart under UNIX/Linux systems? if not, what does a *NIX system use?

2) i found the windows way of assigning permissions confusing. under *nix, there are only 3 attributes: read, write and execute. but under windows2000, we have: read, write, read and execute, modify and full control! is there an easy way to memorizing these two permission systems?

Thanks,
KEN
0
Comment
Question by:ken021600
  • 2
3 Comments
 
LVL 51

Expert Comment

by:ahoffmann
ID: 7133811
1) LDAP
2) don't know what you mean by "memorize" (please explain), but the answer is: NO
   both techniques are distingued, can be compared somehow, each has its advantags and disadvantages
   *nix have a add-on called ACL (user access lists), which is more powerfull, IMHO, but in rare use
0
 

Author Comment

by:ken021600
ID: 7134269
hi,

1) well, by "memorizing", i mean memorizing similarities/differences and keep them in my brain. :)

"each has its advantages and disadvantages"? but i found it's easier to understand and follow the *nix way. can you tell me the disadvantages of the *nix way of setting permissions?

2) just a quick question:
under windows2000 there's "scheduled tasks" but it still needs your login and password when the scheduled time comes---someone told me it's for "better security purposes". is it the case that under *nix, you don't have to do that? i mean, suppose you want the system to back up everything on every Sunday at 3pm, do you just do some shell scripting and let the system do its job when the scheduled time comes, or do you still have to, like that on windows system, be physically on the spot on every Sunday at 3pm and key in your login name and password?   if the answer for the above question is "no", Why can't windows just let the system do what it's supposed to do without authentication?

Thanks,
KEN
0
 
LVL 51

Accepted Solution

by:
ahoffmann earned 50 total points
ID: 7134718
> .. easier to understand and follow the *nix way.
:-)

1) similar is that active directory is a proprietary extension to LDAP, never used it but AFAIK you can use LDAP as active directry too
differences: M$ is always proprietary :-(

> .. disadvantages of the *nix way ..
imagine you have a user in sevaral groups (/etc/group), and another user in other groups.
Then you want to have one file to be read only by 1'st user, but read write by the 2'nd user, and another file vice versa. Imagine you have a lot of such file and/or users, and you end up in infinite groups ...
Don't thinking about how to admin this, and the limitation on groupmembers (mainly 256 on *nix), etc. etc.

2) quick question
*nix schedule jobs with cron, *nix assumes that the user who created the cron has the permissions to do it, otherwise (s)he could not create it.
Cron jobs for a user a run by root, where root switches to the user's ID.
Windoze can do this also, if you enable a special button in the UserManager (can't remeber the exact name) which allows tasks to run as a particular user instead of being a system task.
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Daily system administration tasks often require administrators to connect remote systems. But allowing these remote systems to accept passwords makes these systems vulnerable to the risk of brute-force password guessing attacks. Furthermore there ar…
Network Interface Card (NIC) bonding, also known as link aggregation, NIC teaming and trunking, is an important concept to understand and implement in any environment where high availability is of concern. Using this feature, a server administrator …
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now