Ldap Integration

[Misaro]

Hi,

I working on Active Directory enviroment, ok
I have a new Department with 100 Computers running Red
Hat 9 , so the point I need to find a way to authenticate
windows users log in on Red Hat.

-How may i integrated this process using LDAP ?
How my Active Directory could authenticate Linux Pc's


Thanks any help !!

 

[Eric Fleischman [MSFT]]

Hi,

This would probably be a better question for the people over at Redhat.
From the MSFT perspective, we support a variety of protocols that will be
helpful here:
1) LDAP
2) Kerberos
3) NTLM
4) NIS (when you add Services for Unix)

There are probably others but those are the big four that are coming to
mind.
The question really is, which of them can RH use in an integrated
authentication format, and that would be something they would need to help
you with.

~Eric

 

[Misaro]

ok, We are trying to use a NIS Server, but we are working
on that However i think better to use LDAP to this process
what i trying to understand LDAP implementation or any
site which explain me how to manipule LDAP to allocate
this process??

Thanks

-----Original Message-----
Hi,

This would probably be a better question for the people over at Redhat.
From the MSFT perspective, we support a variety of protocols that will be
helpful here:
1) LDAP
2) Kerberos
3) NTLM
4) NIS (when you add Services for Unix)

There are probably others but those are the big four that are coming to
mind.
The question really is, which of them can RH use in an integrated
authentication format, and that would be something they would need to help
you with.

~Eric

--
Eric Fleischman [MSFT]
This posting is provided "AS IS" with no warranties, and confers no rights
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

Hi,

I working on Active Directory enviroment, ok
I have a new Department with 100 Computers running Red
Hat 9 , so the point I need to find a way to authenticate
windows users log in on Red Hat.

-How may i integrated this process using LDAP ?
How my Active Directory could authenticate Linux Pc's


Thanks any help !!

.

 

[Eric Fleischman [MSFT]]

I don't know of any I'm afraid (but I'm not up on the latest Kerberos
clients on Redhat). Maybe others do, but I would still think you are
probably better off going to a Redhat newsgroup as there's no question
that's probably where the guru's reside.

Is there anyone else here who has some suggestions for Misaro?

~Eric

--
Eric Fleischman [MSFT]
This posting is provided "AS IS" with no warranties, and confers no rights
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

ok, We are trying to use a NIS Server, but we are working
on that However i think better to use LDAP to this process
what i trying to understand LDAP implementation or any
site which explain me how to manipule LDAP to allocate
this process??

Thanks

-----Original Message-----
Hi,

This would probably be a better question for the people over at Redhat.
From the MSFT perspective, we support a variety of protocols that will be
helpful here:
1) LDAP
2) Kerberos
3) NTLM
4) NIS (when you add Services for Unix)

There are probably others but those are the big four that are coming to
mind.
The question really is, which of them can RH use in an integrated
authentication format, and that would be something they would need to help
you with.

~Eric

--
Eric Fleischman [MSFT]
This posting is provided "AS IS" with no warranties, and confers no rights
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm

Hi,

I working on Active Directory enviroment, ok
I have a new Department with 100 Computers running Red
Hat 9 , so the point I need to find a way to authenticate
windows users log in on Red Hat.

-How may i integrated this process using LDAP ?
How my Active Directory could authenticate Linux Pc's


Thanks any help !!

.

 

[Johan Arwidmark]

The only integration I have managed to get up and running is
authenticating Windows 2000 Pro clients to a UNIX (redhat) Kerberos
realm and to authenticate redhat (7.1) clients to an Active Directory.

However, during the work I came across some good (IMHO) articles
regarding integratiion...they might be helpful...

ACD Linux System Administration - Kerberos Notes
http://acd.ucar.edu/~fredrick/linux/kerberos

ACD Linux System Administration - Kerberos Testbed
http://acd.ucar.edu/~fredrick/linux/kerberos/testbed.html

Authenticating Redhat 7.3 against the Active Directory
http://acd.ucar.edu/~fredrick/linux/ad.html

Support WebCast: Services for UNIX 3.0: An Introduction to New
Features
http://support.microsoft.com/default.aspx?scid=kb;en-us;324871&gssnb=1

Active Directory and nss_ldap for Linux: centralized user management
http://www.hut.fi/cc/docs/kerberos/nss_ldap.html

Integrating PAM_LDAP/NSS_LDAP for centralized Unix authentication
http://www.giac.org/practical/Alexis_Tremblay_GSEC.html

Join a Linux server to Active Directory with Samba 3.0
http://asia.cnet.com/itmanager/netadmin/0,39006400,39081966,00.htm

Replacing NIS with Kerberos and LDAP HOWTO
http://www.ofb.net/~jheiss/krbldap/howto.html

Step-by-Step Guide to Kerberos 5 (krb5 1.0) Interoperability
http://www.microsoft.com/windows2000/techinfo/planning/security/kerbsteps.asp


regards
Johan Arwidmark

Windows User Group - Nordic
http://www.wug-nordic.net

 

[Ace Fekay [MVP]]

In

I don't know of any I'm afraid (but I'm not up on the latest Kerberos
clients on Redhat). Maybe others do, but I would still think you are
probably better off going to a Redhat newsgroup as there's no question
that's probably where the guru's reside.

Is there anyone else here who has some suggestions for Misaro?

~Eric

Not sure if these will help, but here they are in case they do:

266082 - Trust Does Not Work Between Windows 2000 and MIT Kerberos [Unix]:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;266082

AD4Unix Microsoft Active Directory for Unix neigbourhood!!!:
http://www.css-solutions.ca/ad4unix/

Step-by-Step Guide to Kerberos 5 (krb5 1.0) Interoperability with Unix:
http://www.microsoft.com/windows2000/techinfo/planning/security/kerbsteps.asp

Windows 2000 Authentication [Kerberos components, NTLM, Unix, Errors, etc]:
http://www.windowsitlibrary.com/Content/617/06/1.html


--
Regards,
Ace

Please direct all replies to the newsgroup so all can benefit.
This posting is provided "AS IS" with no warranties.

Ace Fekay, MCSE 2000, MCSE+I, MCSA, MCT, MVP
Microsoft Windows MVP - Active Directory

 

[Guest]

Thanks a lot for your help
I will check the articles !!