Re: OpenLDAP as Active Directory replacement - is it possible?

[Turbo Fredriksson <turbo@bayour.com>]

>>>>> "Tomasz" == Tomasz Chmielewski <mangoo@interia.pl> writes:

    Tomasz> Hello, I've been trying to figure out if it's possible to
    Tomasz> replace Active Directory with OpenLDAP (+ Samba, Kerberos,
    Tomasz> DNS etc.) on Linux - but from what I've found I'm not sure.

It's very much possible. It DO depend a little on what you want it for.
If you're going to use Exchange, then better go with AD. From what I've
heard it IS possible to configure OpenLDAP for this, but I never actually
heard any REAL success stories (only 'it should be possible provided you ...').

    Tomasz> Is it possible, or partially possible (I don't need every
    Tomasz> feature of AD)?  What additional software (besides
    Tomasz> OpenLDAP) will I need?

In addition to those you really mentioned, all you need is Cyrus SASL
(and a lot of patience :).

    Tomasz> What functionality will I loose?

The point-and-click-interface-your-grandma-can-use :) Other than that,
it's all (!) benefits. It's (a lot!) faster on the same hardware, it's
easier to maintain (well, actual _I_ think so :).

    Tomasz> Where can I find any HOWTOS/documents on this? I spent an
    Tomasz> hour googling but found nothing promising so far.

http://www.bayour.com/LDAPv3-HOWTO.html

It deals with everything but Samba (never had a use for it :).