Using secure sockets layers, Introduction to ssl certificates – Dell PowerVault 725N (Rackmount NAS Appliance) User Manual

2.

Install and configure a Windows 2000 domain controller (see the documentation that came with your operating system software).

3.

Install the Novell Client for Windows 2000 from the Novell website at www.novell.com/download.

4.

Install MSDSS from the NAS system DomainUtils share.

5.

Log in to the NDS tree or Bindery server with administrative credentials.

6.

Log in to the appropriate Windows 2000 domain as a member of the Domain Admins group.

7.

On the MSDSS server, open the Help files, and then print out the steps (briefly summarized below) for "To perform a one-way synchronization" or "To

perform a two- way synchronization."

8.

Click the Start button, point to Programs→ Administrative Tools→ Directory Synchronization to start MSDSS, and then allow the prompts to guide

you through the following tasks:

a.

Start the New Session Wizard (right-click MSDSS in the console tree).

b.

Select Novell Bindery or Novell Directory Services (NDS) for one-way synchronization, or select Novell Directory Services (NDS) for two-

way synchronization.

c.

Select One-way synchronization (from Active Directory to NDS or Bindery) or select Two-way synchronization (from Active Directory to

NDS and back).

d.

Specify the path to the Active Directory container into which you want to copy items.

e.

Accept the default domain controller in which to store the session database.

f.

Specify the NDS Container or Bindery Container from which to copy items.

g.

Provide the name and password of the Novell administrative account.

h.

On the Initial Reverse Synchronization page, select Perform an initial reverse synchronization.

i.

Still on the Initial Reverse Synchronization page, specify the password options (such as Set passwords to the user name).

j.

On the Object Mapping Scheme page, click Default (to accept the default mapping for each source and target directory pair) or Custom (for NDS

only), and then click Object Mapping Table (to specify objects for which you want to establish a one-to-one relationship, regardless of the object
location in either directory tree).

MSDSS does not support custom object mapping for bindery.

k.

Still on the Object Mapping Scheme page, click Filters if you want to configure a filter for this synchronization session.

l.

On the Session Name page, accept the default session name or specify a new name.

m.

Click Finish.

9.

If you selected one-way synchronization, perform all user, group, and NDS organizational unit container (OU) object management from Active Directory.

If you established two-way synchronization, you can now manage user, group, and OU objects from either Active Directory or NDS.

10.

If you plan long-term coexistence between Active Directory and NetWare, you are now finished, unless you want to migrate a subset of users, systems,

and/or files. If you plan to continue by migrating in stages from NetWare to Active Directory, perform the following tasks in the time-frame that is
convenient for you:

l

Install and configure File and Print Services for NetWare (to allow NetWare clients access to files and printers on Windows 2000 servers) and

Gateway Services for NetWare (to allow Windows clients access files and printers on NetWare servers).

l

Replace services or applications that require NDS with commensurate software compatible with Active Directory. Perform large conversions (such

as GroupWise to Exchange) as separate projects.

l

Migrate the pilot group of users and their files (adapt instructions from the migration steps are provided in "

Small Environment

" in this section of

the guide.). Get the pilot group's feedback, and then set a schedule to migrate additional groups of users, according to the priorities you have
established.

l

Migrate the rest of the users as appropriate (for example, if you migrate the set of applications they use, it is time to migrate them also).

For more information, see the Novell website at support.novell.com/servlet/Knowledgebase and the Windows 2000 website at
www.microsoft.com/windows2000.

Using Secure Sockets Layers

This section explains how secure sockets layers (SSL) are used in the NAS system. It also explains how to use your own certificate, if you have one, and how
to regenerate your certificate.

Introduction to SSL Certificates

NOTE:

To access MSDSS software, map a network drive to \\Dellxxxxxxx\DomainUtils, where xxxxxxx is the system's service tag number. For

example, if your service tag number is 1234567, type http://DELL1234567.