[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: unified login (unix + windows)

To: openldap-general@OpenLDAP.org
Subject: Re: unified login (unix + windows)
From: Sebastian Andersson <bofh@diegeekdie.com>
Date: Wed, 14 Jun 2000 08:47:17 +0200
In-reply-to: <3946801E.BF0BF082@valinux.com>; from Gerald Carter on Tue, Jun 13, 2000 at 01:40:30PM -0500
References: <39467AFC.B0FCD1BD@interface-business.de> <3946801E.BF0BF082@valinux.com>

On Tue, Jun 13, 2000 at 01:40:30PM -0500, Gerald Carter wrote:
> is official, there you go.  Problem is that Samba will need
> the LanMan/NT password hash regardless of the userPassword
> representation you use for Unix clients.  I have no work 
> around for this at the moment.  Storing the plain text 
> would work, but then I'm not really fond of that. :-)

Why don't you want to store plain text passwords if you are willing
to store the LanMan/NT hashes? They are equivalent from a security
point, are they not?

The commercial LDAP vendors have replication tools between the PDC
and the LDAP directory. Check for example Netscapes Directory Server
(whatever netscape is called now).

Some LDAP vendors have new DLLs to login via LDAP instead of the PDC/BDC.
I think slapd (www.slapd.com) has that.

Then there is KerbNet from Cygnus (now Red Hat) that might work. I don't
know if it is availible at Red Hat's site, it has become quite impossible
to find things there with all their broken links and confusing structure.
I've not looked at it at all (only read the pressrelease) so it might just
allow for the old kerberos services (kftp, ktelnet etc.).

/Sebastian

Follow-Ups:
- Re: unified login (unix + windows)
  - From: Gerald Carter <gcarter@valinux.com>

References:
- unified login (unix + windows)
  - From: Thomas Guettler <guettli@interface-business.de>
- Re: unified login (unix + windows)
  - From: Gerald Carter <gcarter@valinux.com>

Prev by Date: Re: I'm a newbie. Where can I learn more?
Next by Date: Re: unified login (unix + windows)
Index(es):
- Chronological
- Thread