[Wolves] Windows 2000 ad domain equiv!
Ron Wellsted
ron at wellsted.org.uk
Mon Aug 16 20:11:08 BST 2004
On Mon, 2004-08-16 at 18:31, Martyn Carey wrote:
> Hi guys,
> This may be a bit off topic but i was wondering what experiences
> people have had, (if any) regards configuring a linux box to be the
> equivelant of an ms ad domain.
>
> How easy is samba,open ldap, bind etc to set up and configure!
>
> I look forward to the replies,
>
> Thanks
> Martyn
Hi Martyn,
Individually, each is reasonably easy to setup and get working.
The problem is that M$ AD uses then together, such that LDAP is used as
the repository for information, Kerberos is used for authentication and
dns is used to locate services (via M$ extensions). How these
components interrelate within AD is significant.
As yet, this functionality is not provided by samba 3.0. At present
samba can authenticate against an AD DC using LDAP/Kerberos, but as yet,
it cannot provide the emulation of a DC.
The samba-tng project <http://www.samba-tng.org/> is working on this but
is still experimental.
--
Ron Wellsted
http://www.wellsted.org.uk
ron at wellsted.org.uk
N 52.567623, W 2.137621
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 481 bytes
Desc: This is a digitally signed message part
Url : http://mailman.lug.org.uk/pipermail/wolves/attachments/20040816/33af5a59/attachment.bin
More information about the Wolves
mailing list