About Network Integration Features : Configuring a Windows domain in Domain mode
  
Configuring a Windows domain in Domain mode
You configure a Windows domain in Domain mode in the Domain Join page.
Under Domain/Local, click Domain Settings, click Select, and then click OK when a dialog asks if you really want to change the setting.
These options are available to configure Windows domain in Domain mode:
Active Directory Domain Name/Realm specifies the domain in which to make the SteelHead a member. Typically, this is your company domain name. RiOS supports Windows 2000 or later domains.
RiOS doesn’t support nondomain accounts other than administrator accounts. If you create Local mode shares on a nonadministrator account, your security permissions for the share aren’t preserved on the origin-file server.
Primary DNS IP Address displays the primary DNS IP set in the DNS Settings page. To modify this entry, click the IP address.
Kerberos Authentication specifies integration with WinSec Controller to follow Microsoft’s tiered security model.
NTLM Authentication may be deprecated in the future. We recommend you do not enable this feature.
If NTLM Authentication is not checked and if there are SMB connections with NTLM authentication in the network, they will be blacklisted by Steelhead. Also, if Kerberos Authentication fails, the fallback to NTLM Authentication will not be attempted by the Steelhead.
Username specifies the username. The credentials used to join the domain must have domain join privileges. For Kerberos support, use any user account that has permission to join a workstation to the domain. For NTLM support, use any user account that has permission to join a domain controller to the domain. Domain administrator credentials are not strictly required but we recommend using them. Domain administrator credentials are required when you join the domain as an Active Directory integration.
The system does not cache user credentials after the join operation; credentials are deleted after the operation.
Password specifies the password. This control is case sensitive.
Domain Controller Name(s) specifies the hosts that provide user login service in the domain, separated by commas. (Typically, with Windows 2000 Active Directory Service domains, given a domain name, the system automatically retrieves the DC name.) We recommend specifying the domain controller names in environments where there’s varying latency between the SteelHead and the domain controllers.
Short Domain Name specifies the short domain (NetBIOS) name if it doesn’t match the first portion of the Active Directory domain name. Case matters; NBTTECH is not the same as nbttech.
Join/Leave joins the domain or leaves the domain. If you are in domain mode and have joined a domain, you can’t change to local workgroup mode until you leave the domain.
Rejoin rejoins the domain.
Cancel cancels any current domain action that is in progress, such as joining or leaving a domain.
When you have successfully joined the domain, the status updates to In a Domain.
The next step is to enable protocol optimization for CIFS (SMB) or encrypted MAPI. See About CIFS and About MAPI.