Chapter 5 Security Configuration

Administration password and OS authentication

The "jagadmin" user has unlimited access to Jaguar Manager. For additional security, you can establish an administration password for the jagadmin user and enable operating system authentication. To access and configure these properties:

1. From Jaguar Manager, double-click the server you want to configure.
2. Select File | Server Properties.
3. Select the Security tab.
   Administration password - you can establish an administrative password for the jagadmin user on each server. Only jagadmin can:
   • Access the Jaguar Manager
   • Set or reset the jagadmin password
   • Enable and disable user authentication
   
   
4. To set the administration password:
   1. Select Set jagadmin Password.
   2. In the Administrator Password dialog, enter the password twice and click OK.
      Administration password conventions and restrictions are the same as for user passwords for your platform.
      
   
   Enable OS Authentication - if selected, this option maps Jaguar client users to operating system user names and passwords. You must supply a user name and password that is valid for the machine where the Jaguar server is running. For example, for UNIX, you would use network information service (NIS) passwords, and for NT, you would use your NT domain password. NT users can provide a domain name as part of their user name; for example, \\domain_name\username.
   
   To enable OS authentication on NT:
   
   From NT, start the User Manager.
   
   1. Select Policies | User Rights.
   2. Click on Show Advanced User Rights.
   3. Scroll through the rights list and select "Act as Part of the Operating System."
   4. Use the Add button to add users and groups.
   5. Log out and back in to your NT system to enable authentication.
   6. From Jaguar, select the Enable OS Authentication option on the Server Properties's Security tab.
   
   
5. To enable OS authentication on UNIX, select the Enable OS Authentication option on the Security tab.

      The password for the jagadmin account is always defined in Jaguar Manager. Even if jagadmin is defined as an OS user name and OS authentication is enabled, the password defined in Jaguar Manager is required to log in as jagadmin.

   
   Enable User & Groups Validation - if enabled, the user and group names are validated against their operating system user and group name before being added to any of the following folders:
   • Authorized User
   • Authorized Group
   • Excluded User
   • Excluded Group
   
   
6. To enable user and group validation, select the Enable User and Groups Validation option on the server's Security tab.

Copyright © 2000 Sybase, Inc. All rights reserved.