beautypg.com

Creating groups – Grass Valley Aurora Edit LD v.6.5 Installation User Manual

Page 74

background image

60

Aurora Edit Installation Guide

November 25, 2008

Chapter 1 Aurora Edit Security

Each news organization has different infrastructure and policies regarding the

configuration of domains. What NewsShare SAN security requires is an Active

Directory zone with at least one dedicated Windows 2003 Server domain controller;

there are several ways to achieve this, and the choice appropriate for your organization

depends on your organization’s culture, infrastructure, and IT policies.
In planning, you need to determine the relationship of the new domain to its tree; whether

it will use integrated, delegated, or standalone DNS; and whether the domain controller’s

mode will be mixed, in order to interoperate with pre-Windows 2000 domain controllers,

or native, allowing advanced features, particularly greater opportunity in configuring

user groups. The recommended configuration to effect the most flexible control of the

technical domain is to run integrated DNS on a native-mode domain controller.
This chapter details two of the many ways to set up a domain controller with Active

Directory:
• First node in a domain tree, integrated DNS, (mixed-mode) permissions compatible

with pre-Windows 2003 servers.

• Child node in an existing domain tree, (integrated) DNS in the parent, (native-mode)

permissions compatible with Windows 2003 servers and higher.

As an adjunct step, depending on the trust relationship between the domain controllers

for NewsShare and those of the larger organization, the use of a standalone DNS with

forwarding may be necessary to achieve a highly isolated domain.

Creating Groups

You create groups on your Domain Controller according to the security schema you

created. Use this table as a guideline for creating your groups:

Group Name

Group Scope

Group Type

Required?

Vibrint Services

The Group Scope is dependent on the type of
Domain Controller you are configuring.

1

1.

If you are working in a mixed-mode domain, your only practical scope choice is Glob-

al, which is documented here. In a native-mode domain, other choices are available.
Consult the Windows Active Directory documentation on group scopes.

Security

Yes

Profile Services

Security

Yes

Archivists

Security

Optional

Editors

Security

Ingestors

Security

Producers

Security

Viewers

Security

Other groups as necessary for your newsroom

This manual is related to the following products:
See also other documents in the category Grass Valley Equipment: