[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP synchtonization with windows/Active Directory





2008/2/13, Michael Ströder <michael@stroeder.com>:
Razi Garbie wrote:
>
> What i want to achive is corss-platform authentication between
> windows/AD + workstations and linux (debian, centOS and redhat).
> So i thought it would work to setup a OpenLDAP server on one of the
> boxes and clients on the other servers, and sync the OpenLDAP with my
> currently running Windows/AD, ive looked at various solutions on how to
> authenticate linux machines in Win/AD with winbind etc.


Use pam_ldap or pam_krb5 against AD. NIS information you can retrieve
from OpenLDAP with nss_ldap. No syncing needed for that, just different
ldap.conf files for pam_ldap and nss_ldap.

Ciao, Michael.


I see, so a slapd is not needed?

If thats the case, do you perhaps know if i'll be able to authenticate services that use LDAP:// and not PAM?
Could someone please give me links so that i can read up upon how to setup OpenLDAP to authenticate against Windows/AD.