The Dynamic Local User page lets you configure users created on Windows* NT*, Windows 2000, and Windows XP workstations; and Windows 2000 and Windows 2003 Terminal Servers after they have successfully authenticated to Novell® eDirectoryTM.
The eDirectory name must be no longer than 48 characters in order to use Dynamic Local User (DLU).
Enable Dynamic Local User
Enables creation of a User object that resides either temporarily or permanently
in the workstation's or Terminal Server's Security
Access Manager (SAM) database. NWGINA requires that you specify whether
a local user is to be created.
If this check box is not selected, NWGINA does not create a user in the local SAM. Instead, NWGINA attempts to find an existing user with the credentials indicated in the NWGINA login interface.
If the Enable Dynamic Local User check box is selected, NWGINA gets the Username from the Configuration object and queries the local SAM to see if the Username already exists. If it does exist, NWGINA authenticates the user to the workstation or Terminal Server and access is granted. If the Username does not exist, NWGINA creates the user in the local workstation's or Terminal Server's SAM.
If password restriction policies are set on the local workstation or Terminal Server, Dynamic Local User is not used.
Manage Existing User Account (If Any)
Allows management through the existing account. Click this option if the User
object you want to manage already exists. Workstation group assignments specified
by Workstation Management are implemented, including changing the account from
nonvolatile to volatile when the user
logs in to the account. The account is also removed from the workstation after
the user logs out.
If this check box and the Volatile User check box are both selected, and the user has a permanent local account that uses the same credentials specified in eDirectory, the permanent account is changed to a volatile (temporary) account. The account is managed, but is removed when the volatile user cache age is reached or the user logs out.
Any settings you change here overwrite the current account settings at the workstation or Terminal Server.
If this option is not enabled, Workstation Management cannot manage the existing User object.
Use eDirectory Credentials
Enables logging in through the user's eDirectory credentials instead of NT/2000/XP
credentials. When creating the user account, NWGINA can use either the same
credential set used for eDirectory authentication or a predetermined credential
set specified in the Configuration object. When using eDirectory credentials
to create the workstation user account, NWGINA queries the user's eDirectory
account for the login name, full name, and description. The password for the
NT/2000/XP user account is the same as that for the eDirectory user account.
If eDirectory credentials are not used, the account is always volatile and is not accessible. Full Name and Description can also be included to provide a complete user description.
If you don't use eDirectory credentials and the user account does not already exist (as indicated by the Manage Existing User Accounts check box), the user account is created as a volatile user account, which means that the user account is automatically deleted at logout. This is apparent because the Volatile User check box is automatically enabled if the Use eDirectory Credentials check box is not enabled.
Volatile User (Remove User After Logout)
Specifies the use of a volatile user account for login. The user account that NWGINA creates on the local workstation can be either a volatile or a nonvolatile account.Be aware that if you select both the Volatile User (Remove User After Logout) and Manage Existing User Account (If Any) check boxes, the volatile user account is removed when the user logs out.
User Name
Specify the name of the user.
Full Name
Specify the user's complete name.
Description
Provide any additional information that helps the administrator to further identify
this user account.
Member Of
Lists the groups where this user is a member. When NWGINA creates the workstation
user, it can provide group membership to any user groups. The groups that the
user is added to are listed in the Members Of list. The default configuration
is for the user to be added to the Users group. Other groups can be added by
selecting the group and clicking Add. Groups can be removed by selecting the
group and clicking Remove.
Not Member Of
Lists available groups where this user has not
been assigned as a member.
Add
Adds selected groups to the Member Of box.
Remove
Removes selected groups from the Member Of box.
Custom
Opens the Custom Groups dialog box, where you can add a new custom group, delete
an existing custom group, and view or modify properties of an existing custom
group.
ZENworks
Desktop Management Online Documentation
A trademark symbol (®, TM, etc.) denotes a Novell trademark. An asterisk denotes a third-party trademark. For information on trademarks, see Legal Notices.