Trust account creation can be done with a few clicks of the mouse, a simple application software program, or even by calling up a trust administration administrator. However, depending on how your domain is setup, you may have to utilize different methods to set up and configure your trust account. One way to do this is to use the name of the machine you want to create the trust account for. This machine name can be found in the “Hosted Computers” section of the control panel.
Another method of creating the trust services available is through the use of the NetBIOS command prompt. The command prompt looks like this: netshark -showcontacts -root accounts. Just after you enter the first line, you will get to see all the possible domain names that are already associated with your company. You can search for the corresponding Unix name and enter it into the appropriate field. Press “Enter” when you have finished entering all the required information.
Now you will be shown a screen with all the possible domain-level security options that you can change. To continue with the trust services, you can click on the option “Domain-Level Authentication”. If you are using Microsoft Outlook 2000, you need to click on “Internet Explorer” on the browser menu and then click on “Tools”, and then click “Local System Tools”. By default, this is the graphical user interface for Internet Explorer.
If you are using Windows 2000 Professional, you can right-click on the computer icon called “SOAP” (storage as applet) and click “New”. The new dialog will appear with three choices: “nia”, “winsta” and “smb”. The samba-3 tool is the one displayed in the Windows Services manager. Click on “New” and follow the directions.
Once you have completed these steps, you should be able to view your computer account details in the console tree under “Server settings”. Look for the” trusts” tab, then click on “add new”. Type in the domain name of the member server you created in step one and click on “OK”. You will then be shown a list of all available trust certificate authorities.
Once you have located the appropriate Active Directory Certificate provider, you will be required to select an Active Directory password server. If you have already installed the necessary software on your computer, the installation process will not be too difficult. You may choose the “manually” option if you feel confident enough. Otherwise, follow the instructions provided by the Active Directory site.
Next, you will be required to create a trust container for Active Directory users. You will be prompted for a host name, a password, and an account PIN. If you are using the Windows 2000 operating system, you will be prompted to enter the IP address of the domain that you created in the previous step. Enter all of the information and click “next until finish”.
The last step is to create the security principal. The SSS account PIN is what the machine trusts in order to log into the server and access its files. This is usually a random number, so you will need to create a number in such a way that it is easy to guess. After you have created the SSS account PIN, the machine will be able to log into the server and use it for its files. Finally, you will be able to verify the authenticity of the Active Directory site by checking the properties of the “ldap” directory.