Ungaseqa lesi sigaba uma ungeke umise amagama okudlula oxhumano. Uma ungaqinisekile, buza umphathi wesistimu yakho ukuthola usizo.
Ngaphandle uma ulungisela igama lokudlula NIS, uzobona ukuthi MD5 kanye isithunzi kukhethiwe. Ukusebenzisa kokubili kuzokwenza isistimu yakho ukuba ivikeleke.
Nika amandla amagama okudlula e-MD5 - ikunika igama lokudlula elide ukuba lisetshenziswe (linezimpawu ezingu-256).
Sebenzisa Amagama okudlula Esithunzi - kunikeza indlela rvikelekile yokugcina amagama okudlula.
Ukunika amandla i-NIS - kukuvumela ukuba usebenzise iqembu amakhomphutha enkundlenu efanayo Yomsebenzi Wolwazi loxhumano ngokusebenzis igama lokudlula kanye nefayela leqembu elilodwa. Kukhetha okubili ongekhetha kukhona lapha:
Qaphela: Ukuhlanganisela ukhetho lwe-NIS, kumele uxhumaniseke oxhumaneni lwe-NIS. Uma ungaqinisekile ukuthi uxhumanyiwe noma awuxhunyiwe kuxhumano lwe-NIS, siza ubuze umphathi wesistimu yakho.
Inkundla ye-NIS - lolu khetho lukuvumela ukuba ucacise ukuthi isistimu yakho ingeyaliphi iqembuu noma inkundla lamakhomputha.
Umlekeleli we-NIS - lolu khetho lubanga ukuba ikhomputha yakho isebenzis umelekeleli othile we-NIS, esikhundleni "sakaza" umyalezo kuxhumano lwendawo oluseduze olifuna nanoma imuphi umlekeleli okhona ukuba asingathe isistimu yakho.
Nika amandla iL-DAP - i-LDAP iqinisa izinhlobo ezithile zolwazi langaphakathi kombutho wakho. Unezinketho ezintathu ongakhetha kuzona lapha:
Umlekeleli we-LDAP - lolu khetho lukuvumela ukuba ungenise umlekeleli usebenzisa umthetho olandelwayo we-LDAP.
Isiqu se-LDAP ye-DN - lokhu kukuvumela ukuba ubheka ulwazi lomsebenzis Distinguished Name (DN).
Sebenzisa TLS (Transport Layer Security) ukubheka - lolu khetho livuma i-LDAP ukuba ithumele amagama omsebenzisi angaqondakali kanye namagama okudlula kumlekeleli we-LDAP ngaphambi kokuqiniseka.
Nika amandla i-Kerberos - Kerberos yisistimu evikelekile enikeza imisebenzi yokugunyaza evikelekile. Kukhona okuthathu ongakhetha kukhona lapha:
Isikhungo - lolu khetho likuvumela ukuba ungenise uxhumano olusebenzisa i-Kerberos, esungulwe oyedwa noma abalekeleli abaningi (abaziwa ngokuthi ama-KDC) futhi nabathengi abaningi (abaningi kakhulu).
KDC - lolu khetho likuvumela ukuba ungeniseKey Distribution Center (KDC), umshini okhipha amathikithi e-Kerberos (kwesinye isikhathi ebizwa ngokuthi Ticket Granting Server noma TGS).
Umlekeleli Wokuphatha - lokhu kukuvumela ukuba ungenise umlekeleli usebenzisa kadmind.
Nika amandla Ukugunyazwa kwe-SMB - Imisa i- PAM kusebenzisa umlekeleli we-SMB ukugunyaza abasebenzisi. Kumele unikeze izingxenye ezimbili zolwazi lapha:
Umlekeleli we-SMB - Ichaza ukuthi ngumuphi umlekeleli we-SMB isiteshi sekhomputha sakho esizoxhuma kuyena ukuze sigunyazwa.
Indlela ye-pam_smb ixhasa ukuba nomlekeleli wokuqala kanye nowesibili. Ungangenisa umlekeleli wesibili we-SMB ngokwahlukanuisa ngekhoma abalekeleli bokuqala kanye nabesibili.
iqembu lokusebenza le-SMB - Ichaza ukuthi iliphi iqembu lomsebenzi abalekeleli abahlanganisiwe be-SMB abakulona.