Question: How are users added from other domains the Enterprise PDM Archive Server configuration?
Answer: In order to add users from another domain when using Windows® Logins in Enterprise PDM, create a new local Windows group (on the archive server) and add users or groups from the other domain to this local group. Once done, add the local group to the Windows login settings (or attach/administrative access settings) via the archive server configuration tool.
Between domains the system administrator will create domain trusts. This can be done in one or two ways. The domain A will need to trust the domain where the users are accredited (domain B). Domain administrators on both domains will need to create the trusting relationship (even for a one way trust).
Once the domain trusts are established the following groups will be created:
A global group in the trusted domain for adding users, a universal group to which the global group(s) would be added, a domain local group where the resources are located, the universal group would be added to this group.
This provides the links for users from one domain to another.
After the trusts are created it should be possible to create explicit permissions by individual but this is not a recommended practice.
Alternative resources:
-Self-paced study guide “Designing a Microsoft Windows Sever 2003 Active Directory and Network Infrastructure" ISBN 0-7356-1970-0
-The enquirer should seek the services of a qualified MCSE systems administrator as this is a question of systems administration.
Comments