[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: unified login (unix + windows)

To: "Chris G. Sellers" <sellers@Oakland.edu>
Subject: Re: unified login (unix + windows)
From: Stephan Krings <slothkri@zedat.fu-berlin.de>
Date: Wed, 14 Jun 2000 11:36:50 +0200 (CEST)
Cc: guettli@interface-business.de (Thomas Guettler), openldap-general@OpenLDAP.org (openldap-general@OpenLDAP.org)
In-reply-to: <200006131845.OAA10755@saturn5.acs.oakland.edu>
References: <39467AFC.B0FCD1BD@interface-business.de> <200006131845.OAA10755@saturn5.acs.oakland.edu>

Hello,

> The other option, is synchonization of LDAP with Active Directory in
> Windows2000.  AD is simular to Kerberos and LDAP.  This hopefully is
> possible.

Yes, this works. I did some basic and simple tests with such a
configuration. You can at least use a Win2k AD-Server to authenticate
Unix-Clients using Kerberos or LDAP. The other way around is much more
difficult and I'm not sure if it works. This is tightly related to the
current debate about the "screwy" Kerberos-support in Win2k. But I
think the Samba-team is working heavily on providing this integration.

But this all applies to Win2k only. And upgrading a whole network to
Win2k just to get a much needed integration seems like overkill to me
:-). For NT4 an immediate solution does not come to my mind. Samba as
a PDC might work as well as pam_smb, but LDAP is not involved in these
solutions.

Regards,

Stephan

References:
- unified login (unix + windows)
  - From: Thomas Guettler <guettli@interface-business.de>
- Re: unified login (unix + windows)
  - From: "Chris G. Sellers" <sellers@Oakland.edu>

Prev by Date: Re: unified login (unix + windows)
Next by Date: Re: unified login (unix + windows)
Index(es):
- Chronological
- Thread