[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: How to configure Openldap to pass-through Kerberos tickets from Active Directory? < Virus checked >

To: OpenLDAP-software@OpenLDAP.org
Subject: Re: How to configure Openldap to pass-through Kerberos tickets from Active Directory? < Virus checked >
From: Harry Sufehmi <milis-2@harrysufehmi.com>
Date: Wed, 17 Nov 2004 15:23:37 +0000
In-reply-to: <OFCFA5368D.A92F865D-ONC1256F4F.00351172-C1256F4F.00354C89@MAIL.DE.FESTO.NET>
References: <OFCFA5368D.A92F865D-ONC1256F4F.00351172-C1256F4F.00354C89@MAIL.DE.FESTO.NET>
User-agent: Mozilla Thunderbird 0.8 (Windows/20040913)

Florian Preuss wrote:

Hi,
I'm a real newbie on Linux Servers!


Same here  :-)

I have an Active Directory, an OpenLDAP Server and Linux Clients. My goal
is to authenticate the users on the Linux client using
the AD accounts which are replicated to the OpenLDAP Server except the
passwords.

The way it should work:
A user logs in on the Linux Client. The Client looks in the OpenLDAP
database and the OpenLDAP server directs the password
to the Active Directory, which generates a ticket and send it back to
OpenLDAP and this passes it through to the client.
I read something about configuring the user accounts in OpenLDAP with
{SASL}user@domain.com or {KERBEROS}user@domain.com.
Can anyone help me to get this working???


I must admit I don't know how to accomplish this either, but I found this:
http://www.openldap.org/lists/openldap-software/200203/msg00225.html

The following might have some useful information as well:
http://www.ofb.net/~jheiss/krbldap/howto.html

Hopefully it's of some use to you.


Thanks,
Harry

References:
- How to configure Openldap to pass-through Kerberos tickets from Active Directory? < Virus checked >
  - From: Florian Preuss <FPRE@FESTO.COM>

Prev by Date: Re: SQL Backend Question
Next by Date: RE: Active Directory port ? to be contacted by slurpd
Index(es):
- Chronological
- Thread