PC-DCE offers some additional DCE servers, which you can configure from the More Servers tab in the PC-DCE Configuration Panel.
Note: The system must already be configured as a DCE client or cell server. To maintain the highest level of protection from unauthorized access to the cell servers, avoid configuring security, cell directory, audit, and password strength servers; and the global directory agents on Terminal Server systems.
1. Select server options:
· Distributed Time Service Options.
To configure your system to run as a:
· DTS client — Select the DTS Client checkbox.
· DTS server — Select the Time Server checkbox in the More Servers panel and use the radio buttons to specify the type of DTS service you want to configure:
Local Time Servers provide time synchronization services to Time Service Clients and other Local Time Servers that exist within the same LAN.
Global Time Servers can provide synchronization services throughout a cell that consists of multiple LANs. One Global Time Server is usually sufficient per LAN.
Notice that you cannot configure a system to be both a DTS client and server.
· Audit Server (Windows 2000 and Windows NT Only).
The Audit daemon (auditd) may be used for detecting and recording critical events in distributed applications. For example, a security administrator may want to track user login activity to monitor failed attempts. To start the Audit daemon, select the Audit Server checkbox.
· Password Strength Server (Windows 2000 and Windows NT Only).
To configure your system as a password strength management server, select the Password Strength Server checkbox. This allows you to perform customized password checking and generation to meet the requirements of your cell.
It is recommended that to protect password security and optimize performance, the Password Strength Server should run on the same machine as the master DCE Security Server. However, this is not required.
For additional information, refer to the Gradient PC-DCE Administration Guide.
· Global Directory Agent
The GDA is the DCE component that makes cell interoperation possible. The GDA enables CDS to access a name in another cell through one of the global naming environments (GDS or DNS), or through the CDS of the parent cell, if the cell is part of a hierarchical cell configuration.
· Name Service Interface Gateway
The NSI Gateway, also called the name service interface daemon (nsid), allows remote systems that only have RPC services to use the DCE CDS name service. The Gateway acts on behalf of the remote system to execute the RPC name service API calls.
To configure this component, your system must also be a CDS client, a CDS server, or both. To start the Name Service Interface daemon, select the Name Service Interface checkbox. The system must be rebooted for nsid to start.
2. Enter the cell administrator principal name and password.
3. Click OK.
Note: Clicking OK on the More Servers tab does not overwrite other PC-DCE configuration settings.
When the configuration is complete, the program displays the Configuration Successful! message.