The Centrify Suite allows administrators to control users access to Linux and UNIX machines using their already existing Active Directory accounts. This product features the ability to place granular access controls on those users, such as what systems they can access and when they can access them, as well as what commands they can run.
This tool is fairly straightforward to install and deploy. The product itself consists of two main parts: The first is the management console, which is installed on a Windows machine that has access to the Active Directory domain controller. The second is the connector that is installed on the Linux or UNIX system. The management console installs in just a few minutes and is guided by an intuitive installation wizard. The connector is just as easy to install, even if you are not a Linux guru. The installer application is deployed through the command line and does a number of preinstall checks to be sure communication among the systems is working properly.
After installation is complete, users can be added to policies via the easy-to-use management console. Once a user is assigned to a policy, that user can enlist their Active Directory credentials to login to the assigned Linux machine just as if they were logging into a Windows box. This product not only allows administrators to streamline accounts, but also to be certain that users do not get more permissions and rights than they need.
Documentation consists of several PDF configuration guides, as well as an in-depth administrator guide. We found all documentation to be easy to follow with many step-by-step instructions and screen shots.
Centrify offers both standard and premium support for customers. Premium support includes all the features of the standard support, as well as 24/7/365 assistance, faster response times, and named contacts.
At a price starting at $350 per server, we find this product to be a good value for the money. The Centrify Suite provides solid account tools for granting and managing user access to machines other than Windows without having to create local accounts on those machines.