We would like to install ASE 11.9.2 on NT 4.0 cluster in NT 4.0 Domain
Model. In a few month our corporation is going W2K Active Directory and we
will have to join corporate infrastracture(move to W2K Domain Model).
Does anyone has an experience or any information on such move?
Is it possible at all to move from one domain to another on ASE 11.9.2?
Thanks a lot
Date: Fri, 29 Sep 2000 15:29:40 -0400
Subject: NT domain change
Content-Type: text/plain; charset="us-ascii"
Xref: forums-1-dub sybase.public.sqlserver.nt:1600
Article PK: 1089075
Date: Mon, 02 Oct 2000 11:41:58 +0100
From: Tony Imbierski <firstname.lastname@example.org>
X-Mailer: Mozilla 4.72 [en] (WinNT; I)
Subject: Re: NT domain change
Content-Type: text/plain; charset=us-ascii
NNTP-Posting-Host: aja.sybase.com 188.8.131.52
Xref: forums-1-dub sybase.public.sqlserver.nt:1597
Article PK: 1089071
ASE itself doesn't depend on the NT domain very much, so moving domains should
have little impact. However there are a few small exceptions I can think of:
1) If you are using integrated login security, you will have to change the
'default domain' setting.
2) If you are using named pipe connections, you may have some hiccups
authenticating on NT for the named pipe but this is more of an NT issue, not
3) If your ASE server (or more likely, backup server) uses resources on other
machines via Lan Manager (eg mapped network drives) then you may hit
authentication problems to do with the user account the servers are running
under and whether those accounts have access to the remote resource. Again,
more of an NT issue really.
4) If you use file system devices (as most people do on NT), the owner SID's
and any ACL entries on those files will become invalid. This is because NT
stores the security information using a unique number called the SID rather
than using actual usernames or groups. After you change domains, the original
set of SID's will become invalid. If you experience 'access denied' errors (NT
operating system error 5) then you may have to fix things by changing the
owner of the file and maybe adding a new ACL entry.
This is all theory, off the top of my head. Maybe someone who has actually
been through this will comment. My 'gut feel' is there should be little
~ everything else is just email ~