Review Intro:

The software included in NT includes:

• NWLink: NWLink enable computers running NT to communicate with NetWare servers and clients. NWLink is included in both NTS and NTW.

• CSNW: CSNW enables computers running NTW to make direct connections to file and printer resources at NetWare servers. Furthermore, CSNW supports NDS which provides NT clients with the ability to browse resources, use authentication, and use printing services on NDS hierarchies

• GSNW: GSNW enables computers running NTS and NWLink to both directly access files and printers at NetWare servers, and create gateways to NetWare resources for Windows clients

• FPNW: FPNW enables NetWare clients to access file, print, and application resources on computers running NTS.

• DSMN: DSMN copies NetWare user and group account information to NTS and then incrementally propagates any account changes back to NetWare servers.

• Migration Tool for NetWare: Migration Tool for NetWare enables transfer of user and group accounts, volumes, folders and files from a NetWare server to a computer running NTS.

Some Background

Primarily, NetWare is used for file and print services, with user accounts and privileges stored in the NetWare bindery. Bindery is the NetWare 3.x equivalent of the Windows NT directory database. In NetWare 4.x, the NDS tree is used.

Microsoft Windows NT Server and Workstation provide several features and services that enable computers running Windows NT to coexist and interoperate with NetWare servers. Some are included in Windows NT, while others are available as separate products, called add-ons.

First the basic Novell protocol must be present to do anything :

NWLink

• NWLink is a native 32-bit NT implementation of IPX/SPX and supports application servers in a NetWare environment.
• It is a TRANSPORT protocol. By itself it doesn't allow access to NetWare File and Print resources (or vice versa). It does provide a method of transporting data to the NetWare server.
• NWLink allows computers running NT to communicate with other computers running NT as well as with NetWare servers. Two networking APIs are supported to allow these communications.
• Windows Sockets: This interface supports existing NetWare applications written to comply with the NetWare IPX/SPX interface.
• NetBIOS: This interface supports sending and receiving Novell NetBIOS packets between a computer running Novell NetWare and Novell NetBIOS, and a computer running NT and NWLink NetBIOS.

What's it for?

• Enables NT Workstations to make direct connections to file and print resources at NetWare servers running NetWare 2.x, 3.x or 4.x
• REMEMBER CSNW IS ONLY AVAILABLE ON NT Workstation
• Supports NetWare 4.x servers running either NDS or bindery emulation.

Note

NT will attach through the bindery emulation by default, so if you want an NT Workstation to see the NDS tree, you must disable bindery emulation on the NetWare file server with the following NetWare console command: SET BINDERY CONTEXT = ""

• Login script is also included.
• Is implementation provided by Microsoft for NetWare redirector
• it also supports NetWare MS-DOS console applications like SYSCON and other console programs.

In order to use CSNW to access NetWare resources, these conditions must be met:

• To access the directory, you must have a valid user account with appropriate permissions on the NetWare file server
• Your logon account and password on the NT side must match the logon account and password on the NetWare side
• NWLink IPX/SPX must be running on NT Workstation
• CSNW must be running on NT Workstation

(the user can connect to desired resources through Network Neighbourhood or the NET USE command utility.)

CSNW

CSNW enables computer running NTW to make direct connections to file and printer resources at NetWare servers running NetWare 2.x or later.

• NT computer with CSNW and NWLink will support
• NCP (NetWare Core Protocol). NCP is a file and printer sharing protocol similar to Microsoft SMB (server message blocks).
• LIP (Large Internet Protocol). LIP determines and uses the largest allowable frame size when communicating with a server across a router.
• LFN (Long File Name). LFN can be used when the NetWare server is running OS/2 Name Space.

• CSNW Support for NDS. NDS (NetWare Directory Services) organizes shared objects on participating NetWare Servers into a hierarchical tree. Thus, installing CSNW on NT provides NT clients with the ability to browse resources, use authentication, and use printing services on NDS hierarchies.

REMEMBER, GSNW can only be implemented on NT SERVER!

What's it for?

• Enables computers running Windows NT Server, and using NWLink to access files and printers on NetWare servers. When you install GSNW on an NT Server, it also automatically installs CSNW.

• To provide a gateway for computers running only Microsoft client software to gain access to NetWare resources. These MS client computers don't need
• the NetWare requester
• they don't need CSNW
• OR even an IPX/SPX protocol running on them to access the NetWare resources. The GATEWAY takes care of that for them so that they have access to the resources through the GATEWAY.
• Using GSNW,  NT Server connects to a NetWare file server's directory, and then shares it, as if it was a directory on Windows NT Server computer.

Microsoft Picture:

1. It is designed to provide Windows clients with occasional access to a NetWare network.
2. Serve as a migration path (example NetWareà NT)
3. It's not designed to allow Windows NT Server computer to be a high performance gateway because ALL clients are receiving services through one NetWare connection.
4. RAS clients can use GSNW to access NetWare servers. Using GSNW, business can use NTS as a communications server and enable remote users to have reliable and secure remote access to a NetWare local area network.

Installing GSNW to create a NetWare Gateway requires six steps:

1. Remove any existing NetWare client software from the Windows NT server before you start

Here's why:

Because CSNW is installed and very much part of GSNW, this means that any Windows NT server with GSNW installed also can function as a client to a NetWare server. This explains why you must remove existing NetWare client soft-ware— especially Novell’s NetWare Client for Windows NT—from any Windows NT server before installing GSNW on that machine.

1. Install GSNW on a Windows NT Server (NWLink is installed too if not present; CSNW is installed too)
2. Create a Group account called NTGATEWAY on the NetWare server or NDS tree and make sure the group account set up on NetWare server must have necessary permissions assigned for resources to be accessed
3. Create a User account on the NetWare server using SysCon, NWAdmin or NetAdmin and make the user a member of the NTGATEWAY group. Windows NT will use this account to login to the NetWare server or NetWare tree.
4. Configure GSNW to attach to that preferred server (NetWare 3.x) or default tree and context (NetWare 4.x)
5. Add the server or tree shared resources to the GSNW service (Using Gateway button) and then Add in the Configure Gateway dialog box.)

What's it for?

• To integrate NetWare clients into Windows NT network and allow them to gain direct access to resources on Windows NT Server computers.
• It functions as a NetWare 3.12 compatible file and print server.
• No change in NetWare client side software is needed. AND SMB (Server Message Block) support doesn't have to be added to each NetWare client.
• Not included with Windows NT.
• Can be added to an existing application server to maximize usage of hardware resources.

What's it for?

• Extends Windows NT Server directory service features to NetWare servers.
• It Allows management of mixed Windows NT and NetWare 2.x, 3.x and 4.x (in bindery emulation) environments with Windows NT Directory Services.
• Copies NetWare user and group information to PDC and incrementally reproduces any account changes back to NetWare servers. If NT users are added, this info is copied to the NetWare server.
• Windows NT add-on utility.
•  It allows NetWare clients to have a single network login for by synchronizing accounts across all NetWare servers.
• DSMN can be used to copy ALL NetWare user accounts to a specified domain. This allows all accounts in the domain to be managed from User Manager for Domains.

Use DSMN to accomplish these tasks:

1. Specify which NetWare user and group accounts to manage centrally from Windows NT Server computer. Those are copied to PDC and become NT Server accounts. They are bound by the account policy of the NT Server domain
2. Merge account names from multiple NetWare servers into one account name when adding them to the domain. E.g., DavidS and DavidSm could become DavidS.
3. Specify which Windows NT Server domain accounts to copy back to NetWare servers. This ensures that changes made to domain accounts are synchronized with NetWare server.

What's it for?

• Enables easy transfer of
• user and group accounts
• files and directories

from a NetWare server to a Windows NT Server computer.
 

• If destination server runs FPNW, login scripts can also be migrated

NOTE: a migration leaves the NetWare server intact and only copies the information to the NT Server

It provides a Windows NT Server computer to perform functions:

• Preserve appropriate user account information, including NetWare specific information, such as logins and station restrictions.
• Preserve login scripts with the user account; Windows NT supports NetWare login script.
• Control how user and group names are transferred
• Set passwords for transferred accounts
• Control how account restrictions and administrative rights are transferred
• Create a volume for NetWare users
• Select directories and files to transfer and select destination
• Preserve effective rights on directories and files

(STUDY NOTE: Unless your NT Server is physically connected to a Novell Server, it's difficult to study the Migration Tool for NetWare. If NT doesn't find a Novell server, you can't blame it for stopping you dead in your tracks.)

Migration Tool for NetWare is used to migrate NetWare

1. users,
2. groups,
3. selected files and directories,
4. and rights on files and directories (security)

Migration tool for NetWare will not migrate:

• User passwords
• Logon Scripts
• Print server and Print Queue information

• Workgroup and User Account Managers for NetWare. (not often used)
• Leaves the NetWare server intact. It only copies information to the NT server.
• Can migrate several NetWare file servers to a single NT domain controller or member server.

Prerequisites for using NWCONV.EXE:

There may be a question on what components you need to perform a Migration from NetWare --> NT
These are the top three, but don't ignore the rest.

• Must be running GSNW (Gateway Services for NetWare) on the NT server.
• Must have CSNW running (which is installed with GSNW)
• Must be running NWLink protocol on the NT server.

• If you are transferring users and/or groups, the NT server must be a PDC
• If you are transferring directory and file information, the NT server can also be a member server or a domain controller.
• Must have supervisory rights (Netware 2.x or 3.x) or Admin rights (NetWare 4.x) on the NetWare server.
• Must have the be in BINDERY EMULATION on the NetWare server.
• Must be a member of DOMAIN ADMINS on the NT server.

The destination drive on the NT server must be NTFS to successfully migrate file and directory security information from the NetWare server.

1. Migration Tool for NetWare Is accessed from the command line (NWCONV.EXE) It is located in the \WINNT\system32 folder
2. The main Migration Tool for NetWare screen.

Press the ADD button and you get this Select Servers for Migration dialog box:

The User and Group dialog box allows you to customize how users and groups will be transferred.
Click User Options on the Main screen to access User and Group Options:

The default setting is to migrate all users and groups.

Let's go through all the tabs here to review the options and DEFAULT for each:

1. Password migration (Click on the Passwords tab see above)

• Migration tool for NetWare cannot read NetWare passwords AND won't transfer them
• By default, migrated user accounts will have no passwords. The following options are available:
• No Password (DEFAULT)- User will have no password.
• Password is Username
• Password is - Will let you select a password for all migrated user accounts.

There is also a checkbox for "User must change password at next logon."

None of this is very secure, so you can use a mapping file to specify passwords - see the Use Mappings File below.

2. Duplicate user names (Click on the Usernames tab)

By default, users with duplicate user names will not migrate. The following options are available:

• Log Error (DEFAULT) - Do not migrate user accounts with duplicate names and log it as an error.
• Ignore - Take no action when conflicting user names are encounterd.
• Overwrite with new Info - Replace existing NT account information with NetWare account information.
• Add Prefix - Will allow you to choose a prefix and add it to the user name. For example, if two users names are "gwilson", the NetWare account would become Nwgwilson if "NW" was the prefix you specified.

3. Duplicate group names (Click on the Group names tab)

By default, duplicate group names will be ignored and will not migrate. The following options are available:

• Log Error - logs an error and does not migrate the group.
• Ignore (DEFAULT) - Does not migrate the group or log an error.
• Add Prefix - Will allow you to choose a prefix to be added to the duplicate group name. Same as user names: if NW is prefix, then SALES from the NetWare server would become NWSALES.

4. Account restrictions (policies and profiles) (Click on the Defaults tab)

• this tab specifies how the default account restrictions will be hand