[Date Prev][Date Next]
Re: NT Domain backend
Mark Valence wrote:
> >I've found in the archives mention of an NT domain backend. I'd like to know
> >more on it, if it is a project someone is working at, and, in case, its
> >current status. I've been asked to consider the integration of OpenLDAP
> >services in a w2k environment, and I'd be interested in keeping the server
> >side on unix while ensuring complete services to the windows machines.
> For W2K, you probably just want to use the ldap backend, especially
> if the server is going to be running on unix.
OK. I'll have to work on this in a few days, and while gathering info I found
a couple of postings in -devel about the NT backend. I guessed it was
a sort of back-passwd with special NT account attributes, but what I actually
need is to make W2K apps, and user accounts, if possible, auth against an
external directory server (possibly OpenLDAP). Correct me if I'm wrong,
but I remember that you wrote the microsoft schema that's in the repository,
which brought to evidence that microsoft broke the standard by atering the
'top' objectClass. I'd like to read of any experience in dealing with active
directory by using standard (and standard compliant) clients. For instance:
is it possible to add a user account by means of ldapadd (not in principle: did
anyone actually succeed)?
> The mapping rules I mentioned a few weeks ago were developed so that
> it would be easier to integrate Active Directory into OpenLDAP.
> I have one more thing to do on the mapping rules code, and then I'll be
> committing the changes.
I'm looking forward to checking out your changes :) Then I'll be more
comfortable in continuing my changes to the backend.
BTW: I'll post another message with a couple of ideas on possible
directions for future development of the back-ldap
Dr. Pierangelo Masarati | voice: +39 02 2399 8365
Dip. Ing. Aerospaziale | fax: +39 02 2399 8334
Politecnico di Milano | mailto:email@example.com
via La Masa 34, 20156 Milano, Italy | http://www.aero.polimi.it/~masarati