Solved

Authenticating OS2 systems to windows 2003 domain

Posted on 2004-09-21
1
353 Views
Last Modified: 2010-04-19
Hi,

I have a windows 2003 domain. A new project requires that the client systems should have OS2 operating installed on them. I would like to know how will these OS2 systems authenticate to my windows 2003 domain.

0
Comment
Question by:pereira_allwyn
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 6

Accepted Solution

by:
Casca1 earned 125 total points
ID: 12119293
You will have to enable certain elements of the GPO to allow the server to talk that way. I for one, however, if at possible, recommend against using OS/2, based on the fact that the protocols needed to support it on a network are not installed by default. There is NetBIOS over TCP, but you will have to ensure you have TCP stack support on the OS/2, the protocols used are inherently insecure, and the OS, to the best of my knowledge, is no longer under active development.
For that reason alone, since there is no official support options, you should advise against it. On the other hand, you may have no choice.
Create a completely different sub-net for the OS/2 machines, unless that's unfeasible, as well; You really want to keep these machines off your regular network, as they wil be chatty as magpies. Installing WINS will help, and with a little routing wizardry, you can browse across the various networks, in a more or less secure manner; As long as the OS/2 is seperated from the internet, and your servers handle NAT, and preferably some packet filtering and inspection, should keep your risk to a manageable level.
A note of caution. That's a manageable level, if you have the equipment and services in place. Other wise, you are opening helpless systems to the net that are easily compromisable becuase of the exploits on the stack. Are there any current vulnerabilities  that the OS has? Can you risk it?
One machine, with an (Unintentionally) exposed vulnerability can end up with an SMTP server sending spam, and getting your IP blacklisted in the process. THAT is a headache you do not want.
So while you may have no choice but to support these machines, you must take active steps to protect the systems and your network.
Good Luck!
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question