
	Home > Ask the Storage Technology Experts > Questions & Answers > Security in NAS vs. Windows 2000

Ask The Storage Expert: Questions & Answers

EMAIL THIS

Security in NAS vs. Windows 2000

EXPERT RESPONSE FROM: Randy Kerns

		Pose a Question

		Other Storage Categories

		Meet all Storage Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 04 March 2002
Hi Randy,

Security in NAS vs. Windows 2000. Windows 2000 uses NTFS-v5 Discretionary Access Control List (DACL) and ACE. I believe that most NAS use SAMBA and CIFS that use another file access control mechanism. They do not work well together. You will notice this by managing DACL within Windows 2000 on a file share service by a Linux server running Samba. You will be able to set-up some access rights but try to review them once setup and you will see that you have lost the information on the DACL. This is because there is a conversion during the process.

If we need the security to be maintained like in Windows 2000, what would be the NAS solution? Also, Windows 2000 in native mode uses the Keberos v-5 authentication mechanisms. If NTLM option is turn off on the Windows 2000 infrastructure, the impact will be that you can authenticate to the NAS if it is based on LAN Manager (NTLM v1).

The only vendor that I'm aware of that support mapping to the hard locks of CIFS is VERITAS with their ServPoint NAS. VERITAS has told me that they have added SAMBA extensions to allow this type of lock mapping. You should also look at using Windows Services for Unix which may be able to give he locking you desire. You can find it at: http://www.microsoft.com/windows2000/sfu/

Regarding turning off NT LANanager, here are two Microsoft articles with long answers. http://www.microsoft.com/windows2000/techinfo/howitworks/sec urity/kerberos.asp and http://www.microsoft.com/TechNet/prodtechnol/windows2000serv /maintain/opsguide/secadmog.asp

Randy Kerns
Evaluator Group, Inc.

Editor's note: Do you agree with this expert's response? If you have more to share, post it in our Storage Networking discussion forum.

BROWSE BY TAG

NAS management, NAS (network attached storage), VIEW ALL TAGS

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	NAS management
	Object storage gains steam as unstructured data grows
	Nexenta Systems pushes NexentaStor forward with open storage and ZFS
	NFS 4.1's pNFS: Big NAS performance boost
	NetApp begins rollout of Data Ontap 8
	Storage Decisions Chicago 2009 Session Downloads
	Isilon expands with transactional and archive systems
	Digital Reef aims for data classification scalability
	EMC adds file-level single instancing, Flash to Celerra
	Scale-out NAS poised for growth
	How to determine a NAS system's scalability
	NAS management Research

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

direct-attached storage (SearchStorage.com)

file transfer (SearchNetworking.com)

File Transfer Protocol (SearchEnterpriseWAN.com)

file virtualization (SearchStorage.com)

NAS accelerator (SearchStorage.com)

NDMP (SearchStorage.com)

Network File System (SearchEnterpriseDesktop.com)

network-attached storage (SearchStorage.com)

storage filer (SearchStorage.com)

unified storage (SearchStorage.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Search for Data Management Tools

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2000 - 2009, TechTarget \| Read our Privacy Policy