Local Accounts and Privileges in Likewise Storage Server

Library Content Type:
Publish Date: 
Thursday, September 20, 2012
Event Name: 
Focus Areas:

Each SMB server implementation requires local accounts database in order to support security model involving local access rights. It enables securing local objects by means of security descriptors but also system resources and privileged tasks by means of local privileges. This way both local and, more importantly, domain accounts can be granted different access rights on per-system basis as needed. The talk presents the design and implementation of local accounts databases, their interfaces (local and rpc), limitations and interactions with other parts of Likewise Storage Server.

Learning Objectives

Local accounts and privileges database backend interfaces
Difference between local account access rights and privileges
Local and RPC service interfaces for management