Previous Topic: UNAB ComponentsNext Topic: How UNAB Authenticates Users


How You Set Up UNAB

Understanding how the UNIX Authentication Broker (UNAB) controls access to the UNIX host provides you with information that will help you during the implementation and configuration process.

After you install UNAB on the UNIX host, you register UNAB with Active Directory and activate UNAB to enable enterprise users authentication to UNIX endpoint. You then begin the migration process to migrate local users and groups in to Active Directory.

  1. Register the UNIX host with Active Directory.

    At this stage UNAB does not intercept any login requests.

  2. Define which enterprise users and groups are permitted or denied access to the UNIX host. You do so by creating login authorization policies from CA ControlMinder Enterprise Management.
  3. Activate UNAB to enable enterprise users authentication to the UNIX host.
  4. Add additional enterprise users and groups to the UNAB login authorization policies to enable new users to login.

    At this stage login is permitted for users defined in the local user store (for example: etc/passwd) and enterprise users permitted by UNAB login authorization policies.

  5. Migrate users and groups into Active Directory.