[Gllug] Linux clients authentication and authorisation controlled by a Microsoft Active Directory

James Courtier-Dutton james.dutton at gmail.com
Wed Jul 20 17:32:21 UTC 2011


I have been asked to look in to the best way to integrate MS AD and
Linux clients in an Enterprise environment.
The MS AD is there to stay, and the Linux Clients are there to stay.
I want it to be possible to add a user to AD, and then that user able
to Login to any Linux Client.

Various options have been mentioned.
1) Use winbind to link Linux and AD.
2) Use MS SFU to link Linux and AD.

Does anyone have experience with either of these.

The main problem seems to be the "uid" and "gid".
Linux using integers, and Windows uses complex GUIDs.
A quick fix might be if there exists a patch for Linux that will make
it use GUIDs instead of integers for User IDs.

Can anybody help?

Kind Regards

Gllug mailing list  -  Gllug at gllug.org.uk

More information about the GLLUG mailing list