Secure Global Desktop Administration Guide > Users and authentication > Enabling the NT login authority
To enable the NT login authority:
If you need to authenticate users from more than one domain, you must have one domain that is trusted by all the other domains. You must use the trusted domain as the Windows NT domain setting in Array Manager.
When a user in another domain logs in to Secure Global Desktop, they must use
the format domain\username for their username. If they do not use this format, Secure Global Desktop will try to authenticate
the user using the authentication domain and fail.
Note The Windows NT domain (--ntdomain) attribute for person objects plays no part in the Secure Global Desktop login.
If the Secure Global Desktop server is on a different subnet to the domain controller, you must hard code the authentication machine by running the following commands:
tarantella stop
tarantella config edit \
--com.sco.tta.server.login.ntauth.NTAuthService.properties-authConfig authnbt=NTNAME
tarantella config edit \
--com.sco.tta.server.login.ntauth.NTAuthService.properties-authConfig-append authserver=my.domain.name
tarantella start
where NTNAME is the NetBIOS name of the domain controller and my.domain.name is the DNS name or IP address of the domain controller.
The NT login authority supports 8-bit case-sensitive NT passwords. The NT username can contain any characters.
Copyright © 1997-2005 Sun Microsystems, Inc. All rights reserved.