Re: My LDAP question (fwd)

[Devdas Bhagat <dvb () users sourceforge net>]

On 17/12/02 07:08 -0700, Todd Underwood wrote:
> ron, all,
>
> On Mon, 16 Dec 2002, R. DuFresne wrote:
>
> > I am trying to find out if its possible to use LDAP to authenticate 
> > multiple OS platforms without using W2k's Active Directory. I know that Mac 
> > OS X and other *NIX flavors can authenticate thru LDAP, what I need is for 
> > W2k to authenticate thru LDAP but without using the AD.
> > Does anyone know if this is possible and if so what is the best way to go 
> > about it?
<snip> 
> rather to run samba as a domain controller and have w2k authenticate off 
> of samba.
>
> so it looks something like this:
>
> --openldap configured with the samba schema somewhere on the network.
>
> --samba 2.2 or greater running on an OS that supports nssldap and PAM:  
> see http://www.unav.es/cti/ldap-smb-howto.html for lots more detail.
Or just samba compiled with the --enable-ldapsam option. Bypasses PAM.
Rootdn is stored in the secrets.tdb file though. 
<snip>

> now, because of an older version of samba that didn't support this, but 
Hmmm, I was running the alpha verson of 2.2.1 earlier, when the official
samba had little to no support for LDAP but tng had some. It worked
pretty well.

It used to make humonguous numbers of queries though. I don't know if
this has improved. (Any search would iterate through the entire
userlist).

Devdas Bhagat
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards