Policy Server GuidesPolicy Design GuideUser Directory and Search Dialog ReferenceUser Directory DialogUser Directory Dialog—WinNT Namespace › User Directory Dialog—WinNT Namespace—Directory Setup Tab

Previous Topic: User Directory Dialog—WinNT Namespace

Next Topic: User Directory Dialog—WinNT Namespace—Directory Credentials and Connection Tab
User Directory Dialog—WinNT Namespace—Directory Setup Tab

You can specify information that the Policy Server uses to connect to a WinNT directory in the Directory Setup tab.

NameSpace drop down list

Namespace of the user directory. For WinNT namespaces, select WinNT.

The contents of the User Directory Dialog change to support a WinNT user directory connection.

NT Domain Name field

Name of the WinNT domain, computer within the WinNT domain, or stand-alone WinNT computer:

WinNT domains

To define a namespace that represents global users and groups in a WinNT domain, specify the name of the domain in the NT Domain Name field. For user accounts in domains, SiteMinder supports both domain authentication as well as trusted domain authentication. In order for domain authentication to work, the system on which the Policy Server is installed must have a computer account in the appropriate domain. If this system does not have a computer account in all domains in which users need to be authenticated, the appropriate trust relationships must be established between domains.

You can change the NT account under which the Policy Server is running. To do so, open the Settings, Control Panel, Services Dialog, and change the account under which the Policy Server is running to an account that has the necessary privileges to access the specified domain. This account must have the Act As Part of Operating System system privilege.

Individual WinNT computer in a domain

To define a Namespace that represents local users and groups in a computer that is a member of a domain, specify the name of the domain, followed by the name of the computer in the NT Domain Name field. The domain same and computer name must be separated by a forward slash (/). If you do not specify the name of the computer, performance during searches may suffer.

For example, if a domain called SampleDomain contains a computer called Comp1 which contains user information, you can enter the following in the NT Domain Name field:

SampleDomain/Comp1

Stand-alone WinNT computer

To define a namespace that represents local users and groups in a stand-alone computer, specify the name of the computer in the NT Domain Name field. The stand-alone computer must have a Policy Server installed on it in order for this namespace to be accessible. There may be an initial delay when the Policy Server accesses this namespace for the first time