 | | | Integrating RHE3 & Windows 2k3 | Integrating RHE3 & Windows 2k3 2005-06-01 - By Josh Kelley
Back
Jason Williard wrote:
>I have 5 servers (3 RHE3; 2 Win2k3) that would like to integrate with a
>single authentication system. The 2 Win2k3 servers are currently connected
>via Active Directory and I have been experimenting with ways of connecting
>RHE3 to Win2k3. So far, I have tried Microsoft's Services for UNIX. This
>works, but only synchronizes the password for user's that already exist.
>
>I would like to be able to manage users from a single system, either Windows
>or Linux. In the ideal situation, I could add, remove or modify users and
>have the changes propagated to all systems. The only solution that I have
>been presented with so far is to use LDAP to connect to Active Directory and
>provide authentication to the Linux systems. However, I have run into a
>couple problems. With the documentation I have been able to find, I would
>need one of two tools; Either Vintela's VAS or AD4Unix. While VAS seems
>like a good solution, it requires a larger expense than my company can
>afford at this time. As for AD4Unix, I have been unable to find a recent
>distribution. From what I can see, the development has halted.
>
>With that, does anyone have any suggestions on what route I should take?
>
>
Try Winbind (part of the Samba package). I haven't used it, but it's my
understanding that it's designed to do exactly what you're describing
(have Linux pull all of its user and password information from
Windows). Since Active Directory is based off of LDAP and Kerberos, I
think that it's possible to use nss_ldap and pam_krb5 to do the same
thing, but you're probably better off using Winbind.
For more information, see Samba's Winbind documentation at
http://us1.samba.org/samba/docs/man/Samba-HOWTO-Collection/winbind.html.
Hope this helps.
Josh Kelley
--
Taroon-list mailing list
Taroon-list@(protected)
http://www.redhat.com/mailman/listinfo/taroon-list
Earn $52 per hosting referral at Lunarpages.
|
|
|