Solved

Authenticating OS2 systems to windows 2003 domain

Posted on 2004-09-21
1
347 Views
Last Modified: 2010-04-19
Hi,

I have a windows 2003 domain. A new project requires that the client systems should have OS2 operating installed on them. I would like to know how will these OS2 systems authenticate to my windows 2003 domain.

0
Comment
Question by:pereira_allwyn
1 Comment
 
LVL 6

Accepted Solution

by:
Casca1 earned 125 total points
ID: 12119293
You will have to enable certain elements of the GPO to allow the server to talk that way. I for one, however, if at possible, recommend against using OS/2, based on the fact that the protocols needed to support it on a network are not installed by default. There is NetBIOS over TCP, but you will have to ensure you have TCP stack support on the OS/2, the protocols used are inherently insecure, and the OS, to the best of my knowledge, is no longer under active development.
For that reason alone, since there is no official support options, you should advise against it. On the other hand, you may have no choice.
Create a completely different sub-net for the OS/2 machines, unless that's unfeasible, as well; You really want to keep these machines off your regular network, as they wil be chatty as magpies. Installing WINS will help, and with a little routing wizardry, you can browse across the various networks, in a more or less secure manner; As long as the OS/2 is seperated from the internet, and your servers handle NAT, and preferably some packet filtering and inspection, should keep your risk to a manageable level.
A note of caution. That's a manageable level, if you have the equipment and services in place. Other wise, you are opening helpless systems to the net that are easily compromisable becuase of the exploits on the stack. Are there any current vulnerabilities  that the OS has? Can you risk it?
One machine, with an (Unintentionally) exposed vulnerability can end up with an SMTP server sending spam, and getting your IP blacklisted in the process. THAT is a headache you do not want.
So while you may have no choice but to support these machines, you must take active steps to protect the systems and your network.
Good Luck!
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now