Þ• üøNùHJ#P#t/˜$È#í!(3!\~ƒŒ¦­¶¾ ÇfÑG8I€ Ê Öá ñÿ‘©¾Öå_b(g™­¿ÆÜxî;g+£Ï åñ2:"Ru’ ­dÎ3FEN@” Õ á îû K \ gk Ó Ú æ ô  !!!+!=!B! X! f!t! ˆ!–!!ª!Ì! Ñ!Ü! à! í! ú! """"."1"C" L"V"^"e"Rƒ"Ö" Ý" ê"ø"#h#°y#*$;$€K$5Ì$0%/3%-c%Ä‘%ÎV&Õ%';û'"7(!Z("|(#Ÿ(Ã( Ú( ä(ñ(ú()$),)A)tI) ¾)Ê)å)6*<*M*[U*±*¹*Í*ê*û* +#+4+L8+…++©+Ä+Ô+Û+ä+ , ,, .,9,(Q,0z,0«,1Ü,--..-)]-[‡-_ã-+C.6o.¦.#».ß.ò.//+/@/^/5u/ «/Ì/@á/*"0,M0 z0+›0TÇ0V1:s11®1#à162.;2.j2*™2%Ä2(ê2*3C>3'‚3-ª3/Ø3$4<-45j4= 41Þ4:5#K51o5-¡57Ï516-96+g6>“6?Ò6)7+<7h7*ˆ7M³7O89Q80‹8"¼85ß8X9-n9)œ9$Æ9'ë9):B=:&€:,§:.Ô:#;4';&\;%ƒ;>©; è;1 <D;<;€<¼<1Ù<( =;4=Dp=3µ=)é=(>6<>2s>6¦>0Ý>)?X8?(‘?*º?0å?@&@-F@t@GAFJA‘A°ADÐA4BJB^B}B4‘B'ÆB`îBLODœDžD¤D!¹D(ÛD'E!,E!NE*pE›EºE ¿EËEÛE äEîE÷EFFƒF[FVùFPG_GrG…G”G¦G˜­G!FHhHzH HHI0I IITIjII†I Iœ¯IULJ1¢JÔJóJ K K5K NKYK%vK(œKÅK5åKjL†L˜LC LKäL0M@MSMcM iMqvM èMaõMWN^N oN}N™N žN«N¿NÓNØN óNÿN O O(O&9O`O gOuO yO„O—O §O²O ¹OÃOÕOÜOîOõOýOP2PHRP›P£P ¼PÊPÙPáPÙaQ;RQRÒcR16S,hS+•S)ÁS ëSéõTéßUFÉV=W9NW;ˆW2ÄW÷W XX 1X=XPX bXmX …X“X$Y3Y.IYPxYÉYÚY\áY>ZFZ eZ†Z•Z¬Z»ZÊZZÎZ )[&4[[[q[ ‰[ •[¡[ Á[Í[ã[ ö[(\(-\.V\1…\F·\þ\&]0,]8]]p–]z^I‚^:Ì^_+_I_^_p_‚_”_!¬_!Î_Lð_"=`&``N‡`5Ö`F a1SaE…acËam/b?bBÝb- cPNc>ŸcHÞc:'d7bd<šdF×dSe.re5¡eC×e2fDNf@“fJÔfNgOng'¾g*æg.h;@h*|h-§h:ÕhBiKSi+Ÿi<Ëi'j;0jSlj\Àj5k1Sk)…kC¯kdók>Xl0—l-Èl/öl9&mF`m$§m+Ìm9øm%2nPXn*©n*ÔnOÿn$OoCtoB¸o6ûo2p(GpppI‹pFÕp?q4\q2‘q6Äq:ûq56r1lržrU»r#s.5s,ds‘s/¢s0Òs¦tLªtF÷t>uUu@luS­uv'v=v@Tv+•v!˜×é{‰AžÆeüÓh,’Š5æ\}?Iè%.¨·‚ÐRUF†‘&Sšá9M„j¸/½-Ñ*Yë¹GßÔÁzÜ´(C ”ØõþŽÍý—ÀHï²¾¬Å6dî•#ûÒOú¡K ô+EXåZÇ ºäâ¶mÛòÞ ùq £v¿“σLÉÖ°®¢ʈ€oÙŒ…cÚ)`ÿø <bóöœ›7ÄnÝr‹s$@­0ðf§¼ãÈ© ‡xÃDwËQ8Ì1'yµªl2Tìi;¯"αpêa4]P~÷«t=B: [¦¤–Ÿ»Vg™kç|à3³ >¥N Õ  ^ÂíJWñu_ / between elements | selects | next screen*Authentication ConfigurationLocal Authentication OptionsMaximal Consecutive Character RepetitionMinimal Password RequirementsOther Authentication OptionsRequired Character ClassesSmart Card Authentication OptionsUser Account ConfigurationTip: Smart cards support logging into both local and centrally managed accounts.Tip: These checks are disabled if the value is 0.Tip: This is managed via /etc/security/access.conf.ADS Realm:Ad_min Servers:Admin Server:Advanced _OptionsAlertAll configuration files which were modified by the previous authentication configuration change will be restored from backup. Revert the changes?Allow offline _loginAut_hentication Method:AuthenticationAuthentication ConfigurationAuthentication module %s/pam_%s.so is missing. Authentication process might not work correctly.BackBad smart card removal action specified.Base DN:C_haracter Classes:Cache InformationCancelCard Re_moval Action:Certificate _URL:Click this button if you did not download a CA certificate yet or you have not set the CA certificate up by other means.Control how the system verifies users who attempt to log inCreate _home directories on the first loginDo not configure _NTPDo_n't SaveDomain Administrator:Domain Controllers:Domain _administrator:Domain:Download CA CertificateEnable _fingerprint reader supportEnable _local access controlEnable _smart card supportError downloading CA certificateFingerprint authentication allows you to log in by scanning your finger with the fingerprint reader.Fingerprint readerFreeIPAHashing or crypto algorithm used for storing passwords of local usersHostname or ldap:// or ldaps:// URI pointing to the LDAP server.IPA R_ealm:IPA _Domain:IPA _Server:IPAv2IPAv2 SettingsIPAv2 domain join was not succesful. The ipa-client-install command failed.IPAv2 passwordIf the home directory of an user doesn't exist yet it will be created automatically on his first login.IgnoreJoin DomainJoin SettingsJoining Winbind DomainKDC:KerberosKerberos SettingsKerberos passwordLDAPLDAP Search _Base DN:LDAP SettingsLDAP _Server:LDAP authenticationLDAP passwordLocal accounts onlyLocal authorization is sufficientLockLow_ercaseNISNIS SettingsNIS _Domain:NIS _Server:NIS passwordNextNoO_ther charactersOkPass_word OptionsPasswordPassword:R_ealm:Realm:Require smart car_d for loginRestore the configuration files backed up before the previous configuration changeRevertSa_me Class:Save SettingsSecurity Model:Server:Smart card authentication allows you to log in using a certificate and key associated with a smart card.Some of the configuration changes you've made should be saved to disk before continuing. If you do not save them, then your attempt to join the domain may fail. Save changes?Te_mplate Shell:Template Shell:The %s file was not found, but it is required for %s support to work properly. Install the %s package, which provides this file.The passmaxclassrepeat option value is not an integerThe passmaxrepeat option value is not an integerThe passminclass option value is not an integerThe passminlen option value is not an integerTo connect to a LDAP server with TLS protocol enabled you need a CA certificate which signed your server's certificate. Copy the certificate in the PEM format to the '%s' directory. Then press OK.To verify the LDAP server with TLS protocol enabled you need a CA certificate which signed the server's certificate. Please fill in the URL where the CA certificate in the PEM format can be downloaded from.Unable to initialize graphical environment. Most likely cause of failure is that the tool was not run using a graphical environment. Please either start your graphical user interface or set your DISPLAY variable. Unknown password hashing algorithm specified, using sha256.Use DNS to _locate KDCs for realmsUse DNS to locate KDCs for realmsUse DNS to resolve hosts to realmsUse D_NS to resolve hosts to realmsUse Fingerprint readerUse IPAv2Use KerberosUse LDAPUse LDAP AuthenticationUse MD5 PasswordsUse NISUse Shadow PasswordsUse TLSUse Transport Layer Security extension for LDAP as defined by RFC-2830. It must not be ticked with ldaps server URI.Use WinbindUse Winbind AuthenticationUse _TLS to encrypt connectionsUse the "Join Domain" button to join the IPAv2 domain.User InformationWarningWhen enabled /etc/security/access.conf will be consulted for authorization of users access.WinbindWinbind ADS R_ealm:Winbind Domain Co_ntrollers:Winbind SettingsWinbind _Domain:Winbind authenticationWinbind passwordYesYou must provide ldaps:// server address or use TLS for LDAP authentication._Digits_Download CA Certificate..._Identity & Authentication_Join Domain..._KDCs:_Length:_Password Hashing Algorithm:_Password:_Same Character:_Security Model:_Uppercase_User Account Database:action to be taken on smart card removalauthenticate system accounts by local files onlyauthenticate system accounts by network servicesauthorize local users also through remote servicecachingcan only be run as rootcheck access.conf during account authorizationconfigures winbind to allow offline loginconfigures winbind to assume that users with no domain in their user names are domain usersconfigures winbind to assume that users with no domain in their user names are not domain usersconfigures winbind to prevent offline logincreate home directories for users on their first logindefault LDAP base DNdefault LDAP server hostname or URIdefault NIS domaindefault NIS serverdefault hesiod LHSdefault hesiod RHSdefault kerberos KDCdefault kerberos admin serverdefault kerberos realmdefault realm for samba and winbind when security=adsdefault smart card module to usedialog was cancelleddisable IPAv2 for user information and authentication by defaultdisable LDAP for authentication by defaultdisable LDAP for user information by defaultdisable MD5 passwords by defaultdisable NIS for user information by defaultdisable SSSD for authentication by default (still used for supported configurations)disable SSSD for user information by default (still used for supported configurations)disable authentication with fingerprint readers by defaultdisable authentication with smart card by defaultdisable automatic per-user ecryptfsdisable caching of user credentials in SSSD by defaultdisable caching of user information by defaultdisable hesiod for user information by defaultdisable kerberos authentication by defaultdisable shadowed passwords by defaultdisable use of DNS to find kerberos KDCsdisable use of DNS to find kerberos realmsdisable use of RFC-2307bis schema for LDAP user information lookupsdisable use of TLS with LDAP (RFC-2830)disable winbind for authentication by defaultdisable winbind for user information by defaultdisable wins for hostname resolutiondisplay Back instead of Cancel in the main dialog of the TUIdo not check access.conf during account authorizationdo not create home directories for users on their first logindo not display the deprecated text user interfacedo not prefer dns over wins or nis for hostname resolutiondo not require digits in a passworddo not require lowercase characters in a passworddo not require other characters in a passworddo not require smart card for authentication by defaultdo not require uppercase characters in a passworddo not setup the NTP against the IPAv2 domaindo not start/stop portmap, ypbind, and nscddo not update the configuration files, only print new settingsenable IPAv2 for user information and authentication by defaultenable LDAP for authentication by defaultenable LDAP for user information by defaultenable MD5 passwords by defaultenable NIS for user information by defaultenable SSSD for authentication by default with manually managed configurationenable SSSD for user information by default with manually managed configurationenable authentication with fingerprint readers by defaultenable authentication with smart card by defaultenable automatic per-user ecryptfsenable caching of user credentials in SSSD by defaultenable caching of user information by default (automatically disabled when SSSD is used)enable hesiod for user information by defaultenable kerberos authentication by defaultenable shadowed passwords by defaultenable use of DNS to find kerberos KDCsenable use of DNS to find kerberos realmsenable use of RFC-2307bis schema for LDAP user information lookupsenable use of TLS with LDAP (RFC-2830)enable winbind for authentication by defaultenable winbind for user information by defaultenable wins for hostname resolutiongid range winbind will assign to domain or ads usershash/crypt algorithm for new passwordsjoin the IPAv2 domain as this accountjoin the winbind domain or ads realm now as this administratorload CA certificate from the URLlocal authorization is sufficient for local usersmaximum number of consecutive characters of same class in a passwordmaximum number of same consecutive characters in a passwordminimum length of a passwordminimum number of character classes in a passwordnames of servers to authenticate againstnever use SSSD implicitly even for supported configurationsopposite of --test, update configuration files with changed settingsprefer dns over wins or nis for hostname resolutionprobe network for defaults and print themrequire at least one digit in a passwordrequire at least one lowercase character in a passwordrequire at least one other character in a passwordrequire at least one uppercase character in a passwordrequire smart card for authentication by defaultrestore the backup of configuration filesrestore the backup of configuration files saved before the previous configuration changesave a backup of all configuration filessecurity mode to use for samba and winbindsetup the NTP against the IPAv2 domain (default)shadow passwordshow this help message and exitthe IPAv2 domain the system should be part ofthe character which will be used to separate the domain and user part of winbind-created user names if winbindusedefaultdomain is not enabledthe directory which winbind-created users will have as home directoriesthe group which winbind-created users will have as their primary groupthe realm for the IPAv2 domainthe server for the IPAv2 domainthe shell which winbind-created users will have as their login shelluid range winbind will assign to domain or ads usersunexpected argumentupdate all configuration filesusage: %s [options]use SSSD implicitly if it supports the configurationworkgroup authentication servers are inProject-Id-Version: Authconfig Report-Msgid-Bugs-To: POT-Creation-Date: 2012-02-18 10:34+0100 PO-Revision-Date: 2012-08-13 06:18+0000 Last-Translator: eukim Language-Team: LANGUAGE MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Language: ko Plural-Forms: nplurals=1; plural=0; / 항목 ì´ë™ | ì„ íƒ | ë‹¤ìŒ í™”ë©´*ì¸ì¦ 설정로컬 ì¸ì¦ ì„ íƒì‚¬í•­ìµœëŒ€í•œì˜ ì—°ì† ë¬¸ìž ë°˜ë³µìµœì†Œí•œì˜ ì•”í˜¸ 요구사항다른 ì¸ì¦ ì„ íƒì‚¬í•­í•„요한 ë¬¸ìž í´ëž˜ìŠ¤ìŠ¤ë§ˆíŠ¸ì¹´ë“œ ì¸ì¦ ì„ íƒì‚¬í•­ì‚¬ìš©ìž 계정 설정<ë„ë©”ì¸><최소-최대><모듈><ì´ë¦„> <관리 ì˜ì—­><서버><서버>íŒ: 스마트 카드는 로컬 계정과 중앙 관리 계정 모ë‘ì— ëŒ€í•œ 로그ì¸ì„ 지ì›í•©ë‹ˆë‹¤.íŒ:ê°’ì´ 0 ì´ë©´ ì´ëŸ¬í•œ ì²´í¬í•œ ê°’ì´ ë¹„í™œì„±í™”ë©ë‹ˆë‹¤.íŒ: /etc/security/access.conf를 통해 ì´ë¥¼ 관리합니다.<작업그룹>ADS 관리 ì˜ì—­:관리 서버(_M):관리 서버:추가 옵션(_O)주ì˜ì´ì „ ì¸ì¦ 설정 ë³€ê²½ì— ì˜í•´ ìˆ˜ì •ëœ ëª¨ë“  설정 파ì¼ì€ 백업ì—ì„œ ì›ìƒ 복구ë©ë‹ˆë‹¤. 변경 ì‚¬í•­ì„ ë³µêµ¬í•˜ì‹œê² ìŠµë‹ˆê¹Œ? 오프ë¼ì¸ ë¡œê·¸ì¸ í—ˆìš©(_L)ì¸ì¦ 방법(_H)ì¸ì¦ì¸ì¦ 설정%s/pam_%s.so ì¸ì¦ ëª¨ë“ˆì´ ì—†ìŠµë‹ˆë‹¤. ì´ ëª¨ë“ˆì´ ì—†ì´ëŠ” ì¸ì¦ 절차가 제대로 ìž‘ë™í•˜ì§€ ì•Šì„ ê²ƒìž…ë‹ˆë‹¤. ë’¤ë¡œìž˜ëª»ëœ smart card ì‚­ì œ ë™ìž‘ì´ ì§€ì •ë¨.DN 기반:ë¬¸ìž í´ëž˜ìŠ¤(_H):ìºì‹œ(Cache) 정보취소카드 제거 ë™ìž‘ (_M)ì¸ì¦ì„œ _URLCA ì¸ì¦ì„œë¥¼ ì•„ì§ ë‹¤ìš´ë¡œë“œ 하지 않았거나, 다른 방법으로 CA ì¸ì¦ì„œë¥¼ 지정하지 ì•Šì€ ê²½ìš°ì— ì´ ë²„íŠ¼ì„ í´ë¦­í•˜ì‹­ì‹œì˜¤.ì‹œìŠ¤í…œì´ ë¡œê·¸ì¸ í•˜ë ¤ëŠ” 사용ìžë¥¼ ì¸ì¦í•˜ëŠ” ë°©ì‹ì„ 제어합니다.ì²˜ìŒ ë¡œê·¸ì¸ ì‹œ 홈 디렉토리 ìƒì„±(_H) NTP를 설정하지 ì•ŠìŒ(_N)저장하지 ì•ŠìŒ(_N)ë„ë©”ì¸ ê´€ë¦¬ìž:ë„ë©”ì¸ ì œì–´ê¸°:ë„ë©”ì¸ ê´€ë¦¬ìž(_A):ë„ë©”ì¸:CA ì¸ì¦ì„œë¥¼ 다운로드지문 ì¸ì‹ê¸° ì§€ì› í™œì„±í™”(_F)로컬 억세스 컨트롤 활성화(_L)Smart Card ì§€ì› í™œì„±í™”(_S)CA ì¸ì¦ì„œë¥¼ 다운로드 하는 중 오류 ë°œìƒì§€ë¬¸ ì¸ì¦ì„ 사용하면 지문 ì¸ì‹ê¸°ë¡œ ì§€ë¬¸ì„ ìŠ¤ìºë‹í•˜ì—¬ 로그ì¸í•  수 있습니다.지문 ì¸ì‹ê¸° FreeIPA로컬 ì‚¬ìš©ìž ì•”í˜¸ë¥¼ 저장시 쓸 í•´ì‹œ/암호 알고리즘호스트명 ë˜ëŠ” LDAP 서버를 가리키는 ldap:// ë˜ëŠ” ldaps:// URIIPA ì˜ì—­(_E):IPA ë„ë©”ì¸(_D):IPA 서버(_S):IPAv2IPAv2 설정성공ì ìœ¼ë¡œ IPAv2 ë„ë©”ì¸ì— 가입ë˜ì§€ 않았습니다. ipa-client-install ëª…ë ¹ì´ ì‹¤íŒ¨í–ˆìŠµë‹ˆë‹¤.IPAv2 암호사용ìžì˜ 홈 디렉토리가 ì—†ë”ë¼ë„, ì²˜ìŒ ë¡œê·¸ì¸ ì‹œ ìžë™ìœ¼ë¡œ ìƒì„±ë©ë‹ˆë‹¤.무시ë„ë©”ì¸ ì°¸ê°€ì°¸ê°€ 설정Winbind ë„ë©”ì¸ì— 참가KDC:커베로스커베로스 설정커베로스 암호LDAPLDAP 검색 기반 DN(_B):LDAP 설정LDAP 서버(_S):LDAP ì¸ì¦LDAP 암호로컬 계정만로컬 권한부여로 충분합니다잠금소문ìž(_E)NISNIS 설정NIS ë„ë©”ì¸(_D):NIS 서버(_S):NIS 암호다ìŒì•„니오다른 문ìž(_T)확ì¸ì•”호 옵션(_W)암호암호:관리 ì˜ì—­(_E):관리 ì˜ì—­:로그ì¸í•˜ê¸° 위해 smart cardê°€ 필요함(_D)ì´ì „ 설정 ì‚¬í•­ì„ ë³€ê²½í•˜ê¸° ì „ ë°±ì—…ëœ ì„¤ì • íŒŒì¼ ë³µêµ¬ 복구 ë™ì¼í•œ í´ëž˜ìŠ¤(_M):설정 저장보안 모ë¸:서버:스마트 ì¹´ë“œ ì¸ì¦ì„ 사용하면 스마트 ì¹´ë“œì— ìžˆëŠ” ì¸ì¦ì„œì™€ 키를 사용해 로그ì¸í•  수 있습니다.ê³„ì† ì§„í–‰í•˜ê¸° ì „ì— ë³€ê²½í•˜ì‹  ì„¤ì •ì„ ë””ìŠ¤í¬ì— 저장하셔야 합니다. 지금 저장하지 않으시면 ë„ë©”ì¸ ì°¸ê°€ì— ì‹¤íŒ¨í•  ìˆ˜ë„ ìžˆìŠµë‹ˆë‹¤. 변경 ì‚¬í•­ì„ ì €ìž¥í•˜ì‹œê² ìŠµë‹ˆê¹Œ?템플리트 쉘(_M):템플리트 쉘:%s 파ì¼ì„ ì°¾ì„ ìˆ˜ 없습니다. ì´ íŒŒì¼ì€ %s (ì„)를 제대로 ìž‘ë™í•˜ë„ë¡ í•˜ê¸° 위해서는 반드시 필요합니다. ì´ íŒŒì¼ì´ í¬í•¨ë˜ì–´ 있는 %s 패키지를 설치해 주십시오.passmaxclassrepeat 옵션 ê°’ì€ ì •ìˆ˜ê°€ 아님passmaxrepeat 옵션 ê°’ì€ ì •ìˆ˜ê°€ 아님passminclass 옵션 ê°’ì€ ì •ìˆ˜ê°€ 아님passminlen 옵션 ê°’ì€ ì •ìˆ˜ê°€ 아님TLS í”„ë¡œí† ì½œì„ ì‚¬ìš©í•˜ì—¬ LDAP ì„œë²„ì— ì—°ê²°í•˜ê¸° 위해서는 ì„œë²„ì˜ ì¸ì¦ì„œë¡œ ì„œëª…ëœ CA ì¸ì¦ì„œê°€ 필요합니다. ì¸ì¦ì„œë¥¼ PEM í¬ë§·ìœ¼ë¡œ '%s' ë””ë ‰í† ë¦¬ì— ë³µì‚¬í•˜ì‹­ì‹œì˜¤. 복사를 마친 후 í™•ì¸ ë²„íŠ¼ì„ ëˆ„ë¥´ì‹­ì‹œì˜¤.TLS í”„ë¡œí† ì½œì„ ì‚¬ìš©í•˜ì—¬ LDAP 서버를 확ì¸í•˜ê¸° 위해서는 ì„œë²„ì˜ ì¸ì¦ì„œë¥¼ ê³µì¦í•œ CA ì¸ì¦ì„œê°€ 필요합니다. PEM 형ì‹ìœ¼ë¡œ CA ì¸ì¦ì„œë¥¼ 다운로드 í•  수 있는 URL울 입력해 주십시오. 그래픽 í™˜ê²½ì„ ì´ˆê¸°í™”í•  수 없습니다. 가장 í° ì›ì¸ì€ 그래픽 환경ì—ì„œ ë„구가 실행ë˜ì§€ 않기 때문입니다. 그래픽 ì‚¬ìš©ìž ì¸í„°íŽ˜ì´ìŠ¤ë¥¼ 시작하거나 DISPLAY ê°’ì„ ì„¤ì •í•˜ì‹­ì‹œì˜¤. 알려지지 ì•Šì€ ì•”í˜¸ í•´ì‹œ 알고리즘 지정, sha256 사용. DNS를 사용하여 관리 ì˜ì—­ì„ 위한 KDC를 ì°¾ìŒ(_L)DNS를 사용하여 관리 ì˜ì—­ì— 대한 KDC를 ì°¾ìŒDNS를 사용하여 호스트를 관리 ì˜ì—­ìœ¼ë¡œ 변환DNSë¡œ 관리ì˜ì—­ì— 대한 호스트 변환(_N)지문 ì¸ì‹ê¸° 사용 IPAv2 사용커베로스 사용LDAP 사용LDAP ì¸ì¦ 사용MD5 암호 사용NIS 사용섀ë„ìš° 암호 사용TLS 사용RFC-2830ì— ì •ì˜ëœ LDAPì˜ TLS (Transport Layer Security) í™•ìž¥ì„ ì‚¬ìš©í•©ë‹ˆë‹¤. ldaps 서버 URI와 함께 ì²´í¬ë˜ì–´ì„œëŠ” 안ë©ë‹ˆë‹¤.Winbind 사용Winbind ì¸ì¦ 사용TLS를 ì´ìš©í•˜ì—¬ ì ‘ì†ì„ 암호화함(_T)IPAv2 ë„ë©”ì¸ì— 가입하려면 "ë„ë©”ì¸ ê°€ìž…" ë²„íŠ¼ì„ ì‚¬ìš©í•©ë‹ˆë‹¤.ì‚¬ìš©ìž ì •ë³´ê²½ê³ í™œì„±í™”ë˜ë©´, ì‚¬ìš©ìž ì•¡ì„¸ìŠ¤ ì¸ì¦ì‹œ /etc/security/access.conf를 참조합니다.WinbindWinbind ADS 관리 ì˜ì—­(_E):Winbind ë„ë©”ì¸ ì œì–´ê¸°(_N):Winbind 설정Winbind ë„ë©”ì¸(_D):Winbind ì¸ì¦Winbind 암호예LDAP ì¸ì¦ì— TLS를 사용하려면 ladps:// 서버 주소를 지정하셔야 합니다.숫ìž(_D)CA ì¸ì¦ì„œë¥¼ 다운로드함(_D)...ì‹ë³„ ë° ì¸ì¦(&I)ë„ë©”ì¸ ì°¸ê°€(_J)...KDC들(_K):길ì´(_L):암호 í•´ì‹œ 알고리즘(_P):암호(_P):ë™ì¼í•œ 문ìž(_S):보안 모ë¸(_S):대문ìž(_U)ì‚¬ìš©ìž ê³„ì • ë°ì´í„°ë² ì´ìŠ¤(_U):smart card를 제거하기 위한 명령로컬 파ì¼ë§Œìœ¼ë¡œ 시스템 계정 ì¸ì¦ë„¤íŠ¸ì›Œí¬ 서비스로 시스템 계정 ì¸ì¦ë¡œì»¬ 사용ìžê°€ ì›ê²© ì„œë¹„ìŠ¤ë„ ì‚¬ìš©í•  수 있ë„ë¡ ì¸ì¦ìºì‹±root ë§Œì´ ì‹¤í–‰í•  수 ìžˆìŠµë‹ˆë‹¤ê³„ì •ì„ ì¸ì¦í•˜ëŠ” ë™ì•ˆ access.conf 확ì¸ì˜¤í”„ë¼ì¸ìœ¼ë¡œ 로그ì¸í•˜ê¸° 위해 winbind ì„¤ì •ì‚¬ìš©ìž ì´ë¦„ì— ë„ë©”ì¸ì´ 없는 사용ìžëŠ” ë„ë©”ì¸ ì‚¬ìš©ìžë¼ê³  추측하ë„ë¡ winbind를 ì„¤ì •ì‚¬ìš©ìž ì´ë¦„ì— ë„ë©”ì¸ì´ 없는 사용ìžëŠ” ë„ë©”ì¸ ì‚¬ìš©ìžê°€ 아니ë¼ê³  추측하ë„ë¡ winbind를 설정오프ë¼ì¸ìœ¼ë¡œ 로그ì¸í•˜ì§€ 못하게 하기 위해 winbind ì„¤ì •ì²˜ìŒ ë¡œê·¸ì¸ ì‹œ 사용ìžìš© 홈 디렉토리 ìƒì„± 기본 LDAP 기반 DN기본 LDAP 서버 호스트명 ë˜ëŠ” URI 기본 NIS ë„ë©”ì¸ê¸°ë³¸ NIS 서버기본 hesiod LHS기본 hesiod RHS기본 커베로스 KDC기본 커베로스 관리 서버기본 커베로스 관리 ì˜ì—­security=adsì¼ ê²½ìš° samba와 winbindì— ì‚¬ìš©ë˜ëŠ” 기본 관리 ì˜ì—­ê¸°ë³¸ smart card ëª¨ë“ˆì„ ì‚¬ìš©ëŒ€í™” ìƒìžê°€ 취소ë˜ì—ˆìŠµë‹ˆë‹¤ì‚¬ìš©ìž ì •ë³´ ë° ì¸ì¦ì„ 위해 기본값으로 IPAv2를 비활성화함ì¸ì¦ì— LDAP를 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒì‚¬ìš©ìž ì •ë³´ ì¸ì¦ì— LDAP를 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒMD5 암호를 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒì‚¬ìš©ìž ì •ë³´ ì¸ì¦ì— NIS를 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒì¸ì¦ì„ 위해 ë””í´íŠ¸ë¡œ SSSD를 비활성화함 (ì•„ì§ ì§€ì›ë˜ëŠ” 설정으로 사용ë¨) ì‚¬ìš©ìž ì •ë³´ì— ëŒ€í•´ ë””í´íŠ¸ë¡œ SSSD를 비활성화함 (ì•„ì§ ì§€ì›ë˜ëŠ” 설정으로 사용ë¨) 지문 ì¸ì‹ê¸° ì¸ì¦ì„ 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒ ì¸ì¦ì„ 위해 smart card를 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒì‚¬ìš©ìžë§ˆë‹¤ ìžë™ ecryptfs 비활성화 SSSDì—ì„œ ì‚¬ìš©ìž ì¸ì¦ ì •ë³´ ìºì‹œë¥¼ 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒì‚¬ìš©ìž ì •ë³´ ìºì‹œë¥¼ 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒì‚¬ìš©ìž 정보를 위한 hesiod를 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒì»¤ë² ë¡œìŠ¤ ì¸ì¦ì„ 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒì„€ë„ìš° 암호를 기본ì ìœ¼ë¡œ 사용하지 ì•ŠìŒì»¤ë² ë¡œìŠ¤ KDC ê²€ìƒ‰ì„ ìœ„í•´ DNS를 사용하지 ì•ŠìŒì»¤ë² ë¡œìŠ¤ 관리 ì˜ì—­ ê²€ìƒ‰ì„ ìœ„í•´ DNS를 사용하지 ì•ŠìŒLDAP ì‚¬ìš©ìž ì •ë³´ ê²€ìƒ‰ì„ ìœ„í•´ RFC-2307bis 스키마를 사용하지 ì•ŠìŒLDAPì— TLS를 사용하지 ì•ŠìŒ (RFC-2830) ì¸ì¦ì— winbind를 기본으로 사용하지 ì•ŠìŒì‚¬ìš©ìž 정보를 위한 winbind 기본으로 사용하지 ì•ŠìŒí˜¸ìŠ¤íŠ¸ëª… ë³€í™˜ì— wins를 사용하지 ì•ŠìŒTUIì˜ ì£¼ ëŒ€í™”ì°½ì— ì·¨ì†Œ(Cancel) 대신 뒤로(Back)를 í‘œì‹œê³„ì •ì„ ì¸ì¦í•˜ëŠ” ë™ì•ˆ access.conf를 확ì¸í•˜ì§€ ì•ŠìŒì²˜ìŒ ë¡œê·¸ì¸ ì‹œ 사용ìžìš© 홈 디렉토리를 ìƒì„±í•˜ì§€ ì•ŠìŒ ì‚¬ìš©í•˜ì§€ 않는 í…스트 ì‚¬ìš©ìž ì¸í„°íŽ˜ì´ìŠ¤ë¥¼ 표시하지 ì•ŠìŒí˜¸ìŠ¤íŠ¸ëª… ë³€í™˜ì— wins ë˜ëŠ” nis보다 dns ì‚¬ìš©ì„ ì„ í˜¸í•˜ì§€ ì•ŠìŒ ì•”í˜¸ì— ìˆ«ìžê°€ 필요하지 ì•ŠìŒì•”í˜¸ì— ì†Œë¬¸ìžê°€ 필요하지 ì•ŠìŒì•”í˜¸ì— ë‹¤ë¥¸ 문ìžê°€ 필요하지 ì•ŠìŒì¸ì¦ì— smart card를 기본ì ìœ¼ë¡œ 요구하지 ì•ŠìŒì•”í˜¸ì— ëŒ€ë¬¸ìžê°€ 필요하지 ì•ŠìŒIPAv2 ë„ë©”ì¸ì˜ NTP를 설정하지 ì•ŠìŒportmap, ypbind, nscd ëª…ë ¹ì„ ì‹œìž‘/정지하지 ì•ŠìŒì„¤ì • 파ì¼ì„ ì—…ë°ì´íŠ¸í•˜ì§€ì•Šê³ , 새 설정만 ì¶œë ¥í•¨ì‚¬ìš©ìž ì •ë³´ ë° ì¸ì¦ì„ 위해 기본값으로 IPAv2를 활성화함ì¸ì¦ì— LDAP를 기본ì ìœ¼ë¡œ ì‚¬ìš©í•¨ì‚¬ìš©ìž ì •ë³´ ì¸ì¦ì— LDAPì„ ê¸°ë³¸ì ìœ¼ë¡œ 사용함MD5 암호를 기본ì ìœ¼ë¡œ ì‚¬ìš©í•¨ì‚¬ìš©ìž ì •ë³´ ì¸ì¦ì— NIS를 기본ì ìœ¼ë¡œ ì‚¬ìš©í•¨ìˆ˜ë™ ê´€ë¦¬ 설정과 함께 ë””í´íŠ¸ë¡œ ì¸ì¦ì„ 위해 SSSD를 활성화함 ìˆ˜ë™ ê´€ë¦¬ 설정과 함께 ë””í´íŠ¸ë¡œ ì‚¬ìš©ìž ì •ë³´ì— ëŒ€í•´ SSSD를 활성화함 지문 ì¸ì‹ê¸° ì¸ì¦ì„ 기본ì ìœ¼ë¡œ 사용함 ì¸ì¦ì— smart card를 기본ì ìœ¼ë¡œ 사용함사용ìžë§ˆë‹¤ ìžë™ cryptfs 활성화 SSSDì—ì„œ ì‚¬ìš©ìž ì¸ì¦ ì •ë³´ ìºì‹œë¥¼ 기본ì ìœ¼ë¡œ ì‚¬ìš©ì‚¬ìš©ìž ì •ë³´ ìºì‹œë¥¼ 기본ì ìœ¼ë¡œ 사용(SSSDê°€ 사용ë˜ë©´ ìžë™ìœ¼ë¡œ 비활성화ë¨)ì‚¬ìš©ìž ì •ë³´ë¥¼ 위한 hesiod를 기본ì ìœ¼ë¡œ 사용함커베로스 ì¸ì¦ì„ 기본ì ìœ¼ë¡œ 사용함섀ë„ìš° 암호를 기본ì ìœ¼ë¡œ 사용함커베로스 KDC ê²€ìƒ‰ì„ ìœ„í•´ DNS를 사용커베로스 관리 ì˜ì—­ ê²€ìƒ‰ì„ ìœ„í•´ DNS를 사용LDAP ì‚¬ìš©ìž ì •ë³´ ê²€ìƒ‰ì„ ìœ„í•´ RFC-2307bis 스키마를 사용LDAPì— TLS를 사용함 (RFC-2830) ì¸ì¦ì— winbind를 기본으로 ì‚¬ìš©í•¨ì‚¬ìš©ìž ì •ë³´ë¥¼ 위한 winbind 기본으로 사용함호스트명 ë³€í™˜ì— wins를 사용winbind는 ë„ë©”ì¸ê³¼ ads 사용ìžì—게 gid 범위를 할당할 것입니다새 암호 ìš© í•´ì‹œ/암호 알고리즘 ì´ ê³„ì •ìœ¼ë¡œ IPAv2 ë„ë©”ì¸ì— 가입지금 ì´ ê´€ë¦¬ìžë¡œ winbind ë„ë©”ì¸ ë˜ëŠ” ads 관리 ì˜ì—­ì— 결합함URLì—ì„œ CA ì¸ì¦ì„œë¥¼ ì½ì–´ 옴로컬 사용ìžì—ê² ë¡œì»¬ 권한부여만으로 충분합니다암호ì—ì„œ ë™ì¼í•œ í´ëž˜ìŠ¤ì˜ ì—°ì† ë¬¸ìžì˜ 최대 개수암호ì—ì„œ ë™ì¼í•œ ì—°ì† ë¬¸ìžì˜ 최대 개수 최소 암호 길ì´ì•”호ì—ì„œ 최소 ë¬¸ìž í´ëž˜ìŠ¤ 수ì¸ì¦í•  ì„œë²„ì˜ ì´ë¦„지ì›ë˜ëŠ” 설정ì´ë¼ë„ 암시ì ìœ¼ë¡œ SSSD를 사용하지 ì•ŠìŒ --testì˜ ë°˜ëŒ€, ì„¤ì •ì´ ë³€ê²½ëœ ì„¤ì • 파ì¼ì„ ì—…ë°ì´íŠ¸í•¨í˜¸ìŠ¤íŠ¸ëª… ë³€í™˜ì— wins ë˜ëŠ” nis보다 dns 사용 선호 네트워í¬ì—ì„œ ê¸°ë³¸ê°’ì„ ê²€ìƒ‰ 후 í”„ë¦°íŠ¸ì•”í˜¸ì— ìµœì†Œ í•˜ë‚˜ì˜ ìˆ«ìžê°€ 있어야 í•¨ì•”í˜¸ì— ìµœì†Œ í•˜ë‚˜ì˜ ì†Œë¬¸ìžê°€ 있어야 함 ì•”í˜¸ì— ìµœì†Œ í•˜ë‚˜ì˜ ë‹¤ë¥¸ 문ìžê°€ 있어야 함 ì•”í˜¸ì— ìµœì†Œ í•˜ë‚˜ì˜ ëŒ€ë¬¸ìžê°€ 있어야 함ì¸ì¦ì— smart card를 기본ì ìœ¼ë¡œ 요구함설정 íŒŒì¼ ë°±ì—… 복구 ì´ì „ 설정 ì‚¬í•­ì„ ë³€ê²½í•˜ê¸° ì „ì— ì €ìž¥ëœ ì„¤ì • íŒŒì¼ ë°±ì—…ì„ ë³µêµ¬ 모든 설정 íŒŒì¼ ë°±ì—… 저장 samba와 winbindì— ì‚¬ìš©ë˜ëŠ” 보안 모드IPAv2 ë„ë©”ì¸ì˜ NTP를 설정 (기본값)ì„€ë„ìš° ì•”í˜¸ì´ ë„ì›€ë§ ë©”ì‹œì§€ë¥¼ 보여준 후 ì¢…ë£Œì‹œìŠ¤í…œì´ ì‚¬ìš©í•´ì•¼ 하는 IPAv2 ë„ë©”ì¸winbindusedefaultdomainì´ í™œì„±í™”ë˜ì§€ ì•Šì€ ê²½ìš° winbindë¡œ ìƒì„±ëœ ì‚¬ìš©ìž ì´ë¦„ì—ì„œ ë„ë©”ì¸ê³¼ ì‚¬ìš©ìž ë¶€ë¶„ì„ êµ¬ë¶„í•˜ëŠ”ë° ì‚¬ìš©ë  ë¬¸ìžwinbindë¡œ ìƒì„±ëœ 사용ìžê°€ 홈 디렉토리로 사용할 디렉토리winbindë¡œ ìƒì„±ëœ 사용ìžê°€ ì¼ì°¨ 그룹으로 사용할 그룹IPAv2 ë„ë©”ì¸ ì˜ì—­IPAv2 ë„ë©”ì¸ ì„œë²„winbindë¡œ ìƒì„±ëœ 사용ìžê°€ ë¡œê·¸ì¸ ì‰˜ë¡œ 사용할 쉘winbind는 ë„ë©”ì¸ì´ë‚˜ ads 사용ìžì—게 uid 범위를 할당할 것입니다예ìƒëª»í•œ ì¸ìˆ˜ëª¨ë“  설정 파ì¼ì„ ì—…ë°ì´íŠ¸í•¨ì‚¬ìš©ë²•: %s [옵션]ì„¤ì •ì„ ì§€ì›í•˜ëŠ” 경우 암시ì ìœ¼ë¡œ SSSD를 사용함 작업그룹 ì¸ì¦ 서버가 들어 있ìŒ