Quote:
Originally Posted by
psychocandy
But they also have Windows - but its likely they will want to keep windows separate.
What Windoze calls "Active Directory" is in fact a (very stripped-down*) ) LDAP domain with Kerberos V authentication. You
can use a regular LDAP domain to feed info to the Windoze domain because it is essentially the same.
I hope this helps.
bakunin
___________
*) What i mean by that is that, for instance, a usual attribute for a user record is "login shell", which usually points to
/usr/bin/ksh,
/usr/bin/bash or something alike. In the original "Active Directory" this entry misses and because you cannot change the structure in Windoze you cannot use the Active directory information to authenticate UNIX/Linux users. You will (and should) do it the other way round therefore.