Centrify

Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-0042: Do zones have any impact on the Kerberos realm structure that AD uses?

Authentication Service ,  

12 April,16 at 11:30 AM

Question:

Do zones have any impact on the Kerberos realm structure that AD uses? Are the UNIX systems segregated from a Kerberos perspective from the other clients in the forest?


Answer:

A Centrify DirectControl zone is similar to an Active Directory domain or an NIS domain. Zones allow you to organize the computers in your organization in meaningful ways to simplify
system management and the migration of account information

Zones are nothing but simply a logical grouping of UNIX systems so that user’s local settings can be logically applied based on the Zone that a computer belongs to and the UNIX user’s profile defined for that particular Zone. Zones are not used for any part of the Kerberos environment, which is setup as a client to Active Directory where the AD Domain will control the Kerberos realm.

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.

Related Articles

 articleKB-3925: How to add Centrify parameter to a group policy articleKB-6044: How to configure users for automatic Kerberos Credentials for infinite renewal even after users have logged out? articleKB-7555: Unable to login as root after upgrade to Centrify Suite 2016 (CDC 5.3.0) articleKB-6050: How to configure a group for automatic Kerberos Credentials for infinite renewal? articleKB-6040: How to change the license type in use after adclient successful joined to the AD? articleKB-6038: How to specify the license type to use when joining the server to AD using adjoin? articleKB-6041: How to show current license type in use by adclient articleKB-6056: How to report the group policy settings that are in effect for the local computer? articleKB-1849: How to configure NFSv4 with Kerberos