RES: [ActiveDir] AD and LDAP and single sign on for UNIX

[M�rcio Schneider]

Title: Message

Yes, AD support START_TLS to encrypt the data. A complete solution is to use NSS the retrieve the users and groups info from AD (centralized database user) and kerberos to authenticate with a pam module. Note that you can authenticate with LDAP too, trought a other pam module. And all this products are open source!   Regards,   M�rcio      -----Mensagem original----- De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]Em nome de Byrne, Steve Enviada em: ter�a-feira, 17 de dezembro de 2002 17:30 Para: '[EMAIL PROTECTED]' Assunto: RE: [ActiveDir] AD and LDAP and single sign on for UNIX Thanks, I will look into a commercial product as I think it will save me time in the long run.. A lot of people I have spoken to are under the impression that AD LDAP can be used as an authentication protocol. I see now this is not true, however I did read somewhere that LDAP v3 can support some type of encryption to allow secure transfer of sensitive data. Is this true?