Go Premium for a chance to win a PS4. Enter to Win

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 247
  • Last Modified:

active directory under *nix


I have two questions to ask:

1) Windows2000 has "active directory" as one of its greatest features. Does it have a counterpart under UNIX/Linux systems? if not, what does a *NIX system use?

2) i found the windows way of assigning permissions confusing. under *nix, there are only 3 attributes: read, write and execute. but under windows2000, we have: read, write, read and execute, modify and full control! is there an easy way to memorizing these two permission systems?

  • 2
1 Solution
2) don't know what you mean by "memorize" (please explain), but the answer is: NO
   both techniques are distingued, can be compared somehow, each has its advantags and disadvantages
   *nix have a add-on called ACL (user access lists), which is more powerfull, IMHO, but in rare use
ken021600Author Commented:

1) well, by "memorizing", i mean memorizing similarities/differences and keep them in my brain. :)

"each has its advantages and disadvantages"? but i found it's easier to understand and follow the *nix way. can you tell me the disadvantages of the *nix way of setting permissions?

2) just a quick question:
under windows2000 there's "scheduled tasks" but it still needs your login and password when the scheduled time comes---someone told me it's for "better security purposes". is it the case that under *nix, you don't have to do that? i mean, suppose you want the system to back up everything on every Sunday at 3pm, do you just do some shell scripting and let the system do its job when the scheduled time comes, or do you still have to, like that on windows system, be physically on the spot on every Sunday at 3pm and key in your login name and password?   if the answer for the above question is "no", Why can't windows just let the system do what it's supposed to do without authentication?

> .. easier to understand and follow the *nix way.

1) similar is that active directory is a proprietary extension to LDAP, never used it but AFAIK you can use LDAP as active directry too
differences: M$ is always proprietary :-(

> .. disadvantages of the *nix way ..
imagine you have a user in sevaral groups (/etc/group), and another user in other groups.
Then you want to have one file to be read only by 1'st user, but read write by the 2'nd user, and another file vice versa. Imagine you have a lot of such file and/or users, and you end up in infinite groups ...
Don't thinking about how to admin this, and the limitation on groupmembers (mainly 256 on *nix), etc. etc.

2) quick question
*nix schedule jobs with cron, *nix assumes that the user who created the cron has the permissions to do it, otherwise (s)he could not create it.
Cron jobs for a user a run by root, where root switches to the user's ID.
Windoze can do this also, if you enable a special button in the UserManager (can't remeber the exact name) which allows tasks to run as a particular user instead of being a system task.

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now