Can you outline how ADAM could be made transparent to an application? I've been considering this myself but haven't delved far enough into the subject yet...
:m:dsm:cci:mvp -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of joe Sent: Wednesday, August 10, 2005 1:55 AM To: [email protected] Subject: RE: [ActiveDir] Adding custom fields to AD > I'm sure that if we tried, the TerraServer could be > served by a few optimized ADAM servers, don't you think? I realize this is tongue in cheek but no I don't think it would be good. I am not of the opinion that everything should go into an LDAP Store. LDAP isn't really designed for easily working with binary blobs which is what that is all about. SQL Server is probably still a little on the hokey side with it as well but handles it better than AD does. If the app is already doing LDAP to get basic user info then I don't see the point to jump to SQL unless there is some overriding major factor that requires it. Plus, switching to AD/AM "could be nearly" or "actually could be" transparent to apps which can't be discounted, that is HUGE in the world of app dev. Consider that MANY of the apps that are used in larger orgs are UNIX/LINUX/JAVA based and you will probably find it generally easier to access LDAP than an MS SQL Server from something other than Windows and vbscript/VB. In this case it is sharepoint, so maybe SQL Server is the best solution. Plus there is the syncronization piece and I think there are more pre-built options to sync AD with AD/AM than AD with SQL. It certainly should be more straightforward. Plus, like you with WINS, I have never been a fan of SQL Server. :o) -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rick Kingslan Sent: Wednesday, August 10, 2005 12:19 AM To: [email protected] Subject: RE: [ActiveDir] Adding custom fields to AD joe, You hit the nail on the head with what my problem is with this whole thread - we're dumping crap into AD that really doesn't belong there. Seriously, the data needs to be available to a SharePoint server and some other apps, unless I read something wrong (wouldn't be the first time today...). Let AD do the authN, let SQL serve the data to the SharePoint and the other apps. It confounds me sometimes.... AD shouldn't be the repository for this type of data, unless we're applying the "We've got a solution, as long as it's AD" mentality. I'm sure that if we tried, the TerraServer could be served by a few optimized ADAM servers, don't you think? ;op Rick -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of joe Sent: Tuesday, August 09, 2005 4:58 PM To: [email protected] Subject: RE: [ActiveDir] Adding custom fields to AD I am going to basically say what the other said only I am going to put it this way IF the data needs to be available at all locations or a majority of locations where your domain controllers are located, consider adding the data to AD. IF the data is going to be needed only at a couple of sites or a single site, put them into another store. My preference being AD/AM unless you need to do some complicated joins or queries of the data that LDAP doesn't support. There is also the possibility of using app partitions but if you were going to go that far, just use AD/AM. The thing I have about sticking this data into AD is that AD is becoming, in many companies, a dumping ground of all the crap that was in all the other directories in the company. I realize this was the initial view from MS on how this should work but I worked in a large company and thought that was silly even then. The number one most important thing for AD is to authenticate Windows users. Every time you dump more crap into AD you are working towards impacting that capability or the capability to quickly restore or the ability to quickly add more DCs. The more I see the one stop everything loaded into ADs the more I think that the NOS directory should be NOS only. Plus, I wonder how long before we hit some interesting object size limits. I have asked for details from some MS folks a couple of times on the issues with admin limit exceeded errors that you get when overpopulating a normal multivalue attribute (i.e. not linked) and it causing no other attributes to be added to the object. I wonder what other limits like that exist. joe -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Steve Shaff Sent: Tuesday, August 09, 2005 12:16 PM To: [email protected] Subject: [ActiveDir] Adding custom fields to AD Group, My manager wanted me to check, even though, I don't think that it is possible, but, I will present the question. He would like to add some custom fields, about 30, to AD. He would like to add bio information into AD to be pulled by Sharepoint and other applications for people to read. I think that this is a waste of time, space and effort. However, it is not my call and if this is what he wants.... What are everyone's thoughts on the topic? Thanks S List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
