2008/2/13, Michael Ströder michael@stroeder.com:
Razi Garbie wrote:
What i want to achive is corss-platform authentication between windows/AD + workstations and linux (debian, centOS and redhat). So i thought it would work to setup a OpenLDAP server on one of the boxes and clients on the other servers, and sync the OpenLDAP with my currently running Windows/AD, ive looked at various solutions on how to authenticate linux machines in Win/AD with winbind etc.
Use pam_ldap or pam_krb5 against AD. NIS information you can retrieve from OpenLDAP with nss_ldap. No syncing needed for that, just different ldap.conf files for pam_ldap and nss_ldap.
Ciao, Michael.
I see, so a slapd is not needed?
If thats the case, do you perhaps know if i'll be able to authenticate services that use LDAP:// and not PAM? Could someone please give me links so that i can read up upon how to setup OpenLDAP to authenticate against Windows/AD.