With Authentication Services 4.x installed and when you are logged on as an Active Directory account in the Manage Hosts role, the Host User Statistics pane displays in the upper right-hand corner of the All Local Users view and contains the following information:
|Users requiring AD logon||Displays the number of users that must use their AD logon to access the Unix host.|
|Users not requiring AD logon||Displays the number of users that are not required to use an AD logon to access the Unix host.|
|System Users||Displays the number of users marked as system users.|
|Total Local Users||Displays the total number of users found on the managed hosts.|
With Authentication Services 4.x installed and when you are logged on as an Active Directory account in the Manage Hosts role, the Require AD Logon pane displays in the right panel of the All Local Users tab. From this pane, you can search Active Directory for all users in a specific domain or for a specific user, specify the users required to use Active Directory to log onto the host, and view the properties of an Active Directory user.
Enter search criteria in the search box to locate objects in Active Directory. After entering one or more characters, click the button to display the search results. The Active Directory objects whose names match (starts with) the characters you entered display if they are located in the container (or subordinate container) you specified in the Search In field.
The mangement console uses the Ambiguous Name Resolution (ANR) search algorithm to find matching objects. (See Ambiguous Name Resolution for more information.)
|To search in a different container, select the button to locate a container. By default, the mangement console searches the 'entire directory' of the forest configured for Authentication Services.|
|Search results||The results pane lists the Active Directory users found as a result of the search.|
To require that a local Unix user use an Active Directory password to log onto the host, you must assign (or "map") the Unix user to an Active Directory user, as follows
The Active Directory user assigned to the selected local Unix user displays in the AD User column of the All Local Users tab.
|Select an Active Directory user from the search results list and click Properties at the bottom of the Require AD Logon pane to display the user's properties. You can Unix-enable that Active Directory user from its properties.|
Modify a local Unix user's properties from either the Users view of a host's properties or the All Local Users tab.
To modify a user's properties
You can also double-click the user name to open its properties.
Note: This feature is only available when you are logged in as an Active Directory user for a host that is joined to Active Directory.
Note: This task requires elevated credentials.
The user's properties displays when you double-click a user name or right-click a user name and choose Properties from a host's properties or from the All Local Users tab.
The user properties has these tabs: