RE: Unix/Linux accounts integrated within AD?

["John Hammond" <josephhammond () hotmail com>]

Dummy:  (I love that :) your worse than I am ).

There is a simple way when using Windows server 2003 with R2, on the R2 Disk 
you must install the extensions for active directory and configure Pam on 
Unix side.
references:

http://support.microsoft.com/kb/921913/en-us


> From: "Dummy cerberus" <dummycerberus () gmail com>
> To: Subject: Unix/Linux accounts integrated within AD?
> Date: Wed, 29 Aug 2007 08:44:03 +0200
> MIME-Version: 1.0
> Received: from outgoing.securityfocus.com ([205.206.231.26]) by 
> bay0-mc10-f18.bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.2668); Wed, 
> 29 Aug 2007 12:41:34 -0700
> Received: from outgoing.securityfocus.com by outgoing.securityfocus.com     
>      via smtpd (for mail.hotmail.com [65.54.245.40]) with ESMTP; Wed, 29 
> Aug 2007 12:34:22 -0700
> Received: from lists.securityfocus.com (lists.securityfocus.com 
> [205.206.231.19])by outgoing2.securityfocus.com (Postfix) with QMQPid 
> 1A2F814494F; Wed, 29 Aug 2007 12:47:53 -0600 (MDT)
> Received: (qmail 25809 invoked from network); 29 Aug 2007 07:14:21 -0000
> X-Message-Delivery: Vj0zLjQuMDt1cz0wO2k9MDtsPTA7YT0w
> X-Message-Info: 
> JGTYoYF78jHxEhc9tjr6MWDr0CWwG8AITz4T9ZyowiAuIXsrtRDEItObS9RBHsmKtthELlkwpngv5+NRDrA/tg==
> Mailing-List: contact security-basics-help () securityfocus com; run by ezmlm
> Precedence: bulk
> List-Id: <security-basics.list-id.securityfocus.com>
> List-Post: <mailto:security-basics () securityfocus com>
> List-Help: <mailto:security-basics-help () securityfocus com>
> List-Unsubscribe: <mailto:security-basics-unsubscribe () securityfocus com>
> List-Subscribe: <mailto:security-basics-subscribe () securityfocus com>
> Resent-Sender: listbounce () securityfocus com
> Errors-To: listbounce () securityfocus com
> Delivered-To: mailing list security-basics () securityfocus com
> Delivered-To: moderator for security-basics () securityfocus com
> DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed;        d=gmail.com; s=beta;  
>       
> h=domainkey-signature:received:received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; 
>        
> b=UojTkreMgfZVtg6RCc1GWwUGOT7oPnfJL9JSKrydOPm7cTKOPz988gpm8Q1J/tZJFxzYOnBDf2M9ez2L3xBvWB7nHVMj25ygOGzAnUzA6ih0E3FnTxSoeGikLRGYXGehefExkmbkgWLj4Qfk/ORsyyj603CMqANov5WbZn5kOGA=
> DomainKey-Signature: a=rsa-sha1; c=nofws;        d=gmail.com; s=beta;       
>  
> h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; 
>        
> b=Tj5X4jJnIUn8eC1G6d+scosVo0gk2iqUPEpdWGgvJiYW3g+VxDGkXazrolzPSCYXtwvAUr//fovZC74QOyVjrJgbIk7bmIrQhoyDSkBkpB427rfVdC/8AcqwI/6l218m8uckljJFuyjY4MgfhqcfgFIORaG5n9Y4Omqzw1h3aV4=
> Resent-Message-Id: <20070829184753.1A2F814494F () outgoing2 securityfocus com>
> Resent-Date: Wed, 29 Aug 2007 12:47:53 -0600 (MDT)
> Resent-From: security-basics-return-45528 () securityfocus com
> Return-Path: 
> security-basics-return-45528-josephhammond=hotmail.com () securityfocus com
> X-OriginalArrivalTime: 29 Aug 2007 19:41:34.0419 (UTC) 
> FILETIME=[9B31DA30:01C7EA74]
>
> Hello,
>
> First of all, thank you very much for your help wit my question about
> GPOs and so on... your answers helped me a lot...
>
> Now I have the following question: I have found that my organization
> has several kind of OS installed on computers... most of them are
> W2K/W2K3 integrated within a W2K domain...
>
> Since admins have to remember lots of accounts/passwords for the W2K*
> servers, and the others with Linux, HP-UX, Solaris, etc... I have
> found that most of the passwords are too simple, and repeated all over
> the non-W2K* systems...
>
> I have tried with a password manager, but some times we lost a
> valuable time searching for the strong password for one system at the
> password manager software...
>
> Is there anyway to integrate the OS accounts of UNIX-like sysetms with an 
> AD?
>
> Best regards