Advanced Server maintains compatibility with servers running LAN Manager and at the same time expands and enhances the LAN Manager feature set. For example, Advanced Server builds on the LAN Manager domain model but simplifies domain administration. Instead of four types of servers, Advanced Server has two; instead of requiring a user account for each domain, users can have a single network-wide logon. Similarly, Advanced Server security features build on those of LAN Manager.
A significant difference between LAN Manager and Advanced Server systems is that LAN Manager does not recognize trust relationships and therefore does not allow local groups. To enable user access to resources on LAN Manager servers in your domain, you must create local user accounts for all users who are not in your domain but who will need to use the resources.
Workstations do not need updated software to make the transition from a LAN Manager to an Advanced Server domain. However, to ensure that the correct domain validates a logon request, MS-DOS LAN Manager clients must be running LAN Manager, Version 2.1a, or later. When clients run software prior to LAN Manager, Version 2.1, the domain name is not passed and is instead broadcast throughout the network until a server recognizes the logon name. Not only does performance suffer, but the user may have accounts in several domains and may not be validated by the correct domain controller.
When you administer LAN Manager 2.x servers, a few Server Manager functions are unavailable or work somewhat differently from Advanced Server computers.
|
Server Manager function |
Performance with LAN Manager, Version 2.x |
|
Administering the list of alert recipients |
The Server and Alerter services on that server must be stopped and restarted before the changes will take effect. Since the Server service only can be restarted locally, this action must be performed at that server. |
|
Configuring service startup |
In the Services dialog box, the Startup button is unavailable. |
|
A LAN Manager 2.x server cannot be promoted to primary domain controller of a domain containing an Advanced Server PDC or BDC. |
|
|
When a LAN Manager 2.x server is selected, the Synchronize With Primary Domain Controller command reestablishes the computer account password on both that server and the primary domain controller. You can do this only for LAN Manager 2.x servers that are members of domains with LAN Manager 2.x primary domain controllers. You cannot use Server Manager to synchronize a LAN Manager 2.x server with an Advanced Server primary domain controller. |
|
|
Synchronizing entire domain |
While a LAN Manager 2.x primary domain controller is selected, the Synchronize Entire Domain command is not available on the Computer menu. |
|
Server Manager cannot administer the LAN Manager 2.x replication service. A LAN Manager 2.x export server cannot replicate to an Advanced Server import computer. However, an Advanced Server export server can replicate to LAN Manager 2.x servers. Usually, Advanced Server and LAN Manager 2.x export servers will not coexist in the same domain. |
When administering a LAN Manager 2.x domain using Server Manager, the Servers, Workstations, and All commands in the View menu are unavailable. When administering LAN Manager domains and servers, some User Manager for Domains functions will be unavailable or will behave differently from Advanced Server, as described below:
|
User Manager for Domains function |
Behavior when administering
|
|
Renaming a user account |
User accounts cannot be renamed. On the User menu, the Rename command is unavailable. |
|
Managing user account properties |
In the New User, Copy Of, and User Properties dialog boxes, User Must Change Password At Next Logon and Password Never Expires are unavailable. |
|
Managing group memberships for user accounts |
Local groups do not exist. Only membership in global groups can be managed. |
|
Managing environment profiles for user accounts |
In the User Environment Profile dialog box, the User Profile Path box is unavailable; the Logon Script and Home Directory boxes are slightly changed. |
|
Managing account information for user accounts |
In the Account Information dialog box, the Account Type options are unavailable and Privilege Level options are added. |
|
Managing local groups |
Local groups do not exist. Only global groups are available. On the User menu, the New Local Group command is unavailable. |
|
Managing the Account policy |
In the Account Policy dialog box, the Forcibly disconnect remote users from server when logon hours expire option is unavailable as is the Users Must Log on to Change Password option. |
|
Managing the User Rights policy |
Cannot be administered. On the Policies menu, the User Rights command is unavailable. |
|
Managing the Audit policy |
Cannot be administered. In the Policies menu, the Audit command is unavailable. |
|
Managing trust relationships |
Cannot be administered. In the Policies menu, the Trust Relationships command is unavailable. |