AD Users Share Local Account

Showing results for 
Search instead for 
Do you mean 
Reply
Contributor II
Posts: 17
Registered: ‎04-25-2017
#1 of 4 608
Accepted Solution

AD Users Share Local Account

We are migrating to a new server which  running AIX 7.1. All seems to work properly. Current prod server is running AIX 6.1 using 5.0 or 5.1 Express.

There is config in the current server (6.1) where all AD authenticated users share a local AIX logon (named tempuser).
Our use case is Win users only need authenticate to run an AIX app and they do not need nor use any other AIX local resources.

Does any one know where I can find/set this logon-sharing in Centrify?

 

 

 

 

Contributor II
Posts: 17
Registered: ‎04-25-2017
#2 of 4 604

Re: AD Users Share Local Account

Add'l info: AIX Server 7.1 is running Express 5.4
Centrify Guru I
Posts: 2,036
Registered: ‎07-26-2012
#3 of 4 589

Re: AD Users Share Local Account

@PFS37273,

 

Welcome to the Centrify community.

 

Sounds like you're using the override feature in a pre-summer 2014 client version.

There were changes to our policy (due to abuse) that may affect your ability do do this configuration with the currently supported Centrify Express version.

 

Let's validate this first because the parameter that you may be using is this one:

https://docs.centrify.com/en/css/2017.2-html/index.html#page/Configuration_and_tuning_reference/nss....

 

For the full context, here's the announcement from our CEO from the summer of 2014

https://blog.centrify.com/introducing-centrify-server-suite-2014-1/ 

 

Please skim the configuration in your working system and let's validate this. 

 

Bottom-line:  If this is correct, you need the licensed version of the product.

 

R.P

 

Want to learn more about practical Centrify examples? Check out my blog at http://centrifying.blogspot.com
Follow Centrify:
Contributor II
Posts: 17
Registered: ‎04-25-2017
#4 of 4 494

Re: AD Users Share Local Account

Found how to do it.

It's not sharing an account. More of all logged on users landing in (sharing) the same home directory.

 

It's a parameter edit int the /etc/centrifydc/centrifydc.conf.

auto.schema.homedir: /home/{name of dir to be shared}