Hi, what are the essential differences between a Samba 3 controlled domain (thus an NT4-legacy domain) vs an ADS Microsoft controlled domain?
AFAICT single-sign on, common password backends etc. can be modelled with LDAP & KRB. Without ADS I cannot use some Microsoft GUIs to add/edit/remove users/printers/file shares. Also deploying group policies seems to be harder. What are the true reasons for going ADS, and what can be done against it? ;) And what are blockers for a Linux/Unix environment to go ADS? Is LDAP scripting with ADS as easy as with OpenLDAP for instance? Can I place all my NIS schemes onto ADS' LDAP, or will I stumble over proprietary "extensions". Background: A medium sized educational facility (order 1000 nodes and users) considers consolidating Linux and Windows >= 2000 authentication services and the Win-fraction praises ADS for it, while the Linux fraction shivers with the idea of having the most important piece of security lost to a black box ... Thanks! -- Axel.Thimm at ATrpms.net
pgpaXRxt4NCNk.pgp
Description: PGP signature
-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba