Topics | How To
Active Directory User Authentication (Windows)
Data Classification can support various types of users and user groups.
For Data Classification on Unix, ensure that you are using valid users and groups on the system.
Data Classification on Windows can look up files belonging to the following:
Note that Data Classification on Windows supports files owned by domain user groups but not local user groups. Also, all domain users and domain user groups used by the Data Classification Enabler must always reside under the "Builtin" or "Users" organization unit.
Data Classification on Windows allows you to archive data owned only by local users or by users who are members of the same domain as that of the client computer. It does not allow you to archive data owned by users who are members of a domain other than that of the client computer. The user name and password specified at the agent level allow Data Classification-enabled File Archiver for Windows Agent jobs to search Active Directory for user membership of groups that are specified in a Data Classification rule. If Data Classification subclient rules do not include user groups, no Active Directory authentication is required during an archive operation.
The Data Classification Enabler on Windows contacts Active Directory for user information under two conditions:
When you are defining subclients and you browse to look up users or user groups, you are prompted to provide a valid domain user name and password. This account can be any account that has permission to list Active Directory users or groups. Note that if the user name and password at the Enabler level have not yet been specified and a user or group Browse is conducted, the user name provided will be saved at the Enabler level for later use during subsequent archive jobs. Only one user name can be stored for this purpose.
When a Data Classification-enabled data archive job runs, Active Directory will be queried for a list of users if the Data Classification subclient rule contains a "Group" entry. The user name and password used to perform this query are the ones stored at the agent level.
See Use Account for Data Classification (Windows) for step-by-step instructions.