AD takes care of the Windows side completely to include Domain Admin, etc. OpenLDAP is trivial to configure for this.
open-likewise simply puts it's own framework over it all.
I would build up test systems to see what you like, but really LDAP is easy once you get the hang of it.
I have implemented LDAP under Gentoo, and OpenSuse/SLES, as well as with single sign on systems under Apache and I love cross platform integration - it's the ONLY WAY to go!
www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis | (503)754-4452
January PLUG HackFest = Kristy Westphal, AZ Department of Economic Security Forensics @ UAT 1/10/09 12-3PM
> Date: Fri, 2 Jan 2009 08:47:23 -0700
> From: cryptworks@gmail.com
> To: plug-discuss@lists.plug.phoenix.az.us
> Subject: Re: ****Re: Linux Administration - Users in (any) database howto/why...
>
> ok now here is a question.
>
> how well would this concept play with something like open-likewise and
> domain authentication?
>
> how closely do you think we could merge the two user databases in this case?
>
> (im a Linux machine stuck in a windows network. but at least i can admin both!)
>
> On Fri, Jan 2, 2009 at 8:37 AM, Lisa Kachold <lisakachold@obnosis.com> wrote:
> > I agree completely that LDAP as a standard, especially with Postgresql LFS
> > authentication (including web systems scalability) is a viable, already
> > engineered solution that will do what he needs.
> >
> > If he follows the HowTo's initially, he should be able to get this solution
> > up and running and be able to scale systems as he goes along. Once he pokes
> > it a few times, he will catch on. One doesn't need to go deep into the
> > mechanics and embrace the complexity immediately? Also, LDAP has an added
> > benefit of being able to convert trivially to Open Directory management, so
> > he could actually have the WINDOWS ADMINS DO USER MAINTENANCE!!!!
> >
> > www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis |
> > (503)754-4452
> > ________________________________
> > January PLUG HackFest = Kristy Westphal, AZ Department of Economic Security
> > Forensics @ UAT 1/10/09 12-3PM
> >
> >> Subject: Re: ****Re: Linux Administration - Users in (any) database
> >> howto/why...
> >> From: craigwhite@azapple.com
> >> To: plug-discuss@lists.plug.phoenix.az.us
> >> Date: Thu, 1 Jan 2009 09:36:32 -0700
> >>
> >> On Thu, 2009-01-01 at 11:24 -0500, kitepilot@kitepilot.com wrote:
> >> > I think that LDAP is overkill for my application.
> >> > My users will authenticate only in/for one server, and probably to
> >> > either
> >> > update a WEB site or drop/retrieve e-mail.
> >> >
> >> > Some users may have WEB sites, some users may have e-mail, some users
> >> > may be
> >> > signed up in the wireless network, and some users may have any
> >> > combination
> >> > of those services, but those details can be easily stored at the
> >> > database
> >> > level.
> >> > Even if I split some functionality among various servers.
> >> > I hope... :)
> >> > Thanks!
> >> > Enrique
> >> >
> >> > PS: LDAP stuff:
> >> > http://www.ucalgary.ca/it/directories/identity/ldap-pam
> >> ----
> >> LDAP is overkill when considering only one purpose. The value of LDAP is
> >> portability, lots of clients understand how to speak the language
> >> including many authentication systems and there is built-in replication.
> >>
> >> Once you decide that symmetry of UID's, GID's and passwords across
> >> systems has considerable value, LDAP becomes the way to go.
> >>
> >> Add in things like shared contacts/address books and automatic NFS
> >> mounts, e-mail routing/aliases are terrific bonuses.
> >>
> >> Craig
> >>
> >> ---------------------------------------------------
> >> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> >> To subscribe, unsubscribe, or to change your mail settings:
> >> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> >
> > ________________________________
> > It's the same Hotmail(R). If by "same" you mean up to 70% faster. Get your
> > account now.
> > ---------------------------------------------------
> > PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> > To subscribe, unsubscribe, or to change your mail settings:
> > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
> >
>
>
>
> --
> A mouse trap, placed on top of your alarm clock, will prevent you from
> rolling over and going back to sleep after you hit the snooze button.
>
> Stephen
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
It’s the same Hotmail®. If by “same” you mean up to 70% faster. Get your account now.