Ramon Linan wrote:
It looks like this guys that are building the app are using LDAP to find
the username and Kerberos to create the token, do that make sense?
Also, it looks like this application add 2 classes to the AD, I wonder
when is worthy to use ADAM , should it be use for any custom app that
expands the schema or only depending on how "big" the changes are to the
schema?
Extending the schema is not the end of the world and it is standard
operation in AD, but it has to be done with knowledge and caution.
They have to get proper OIDs for their extensions and they should have
unique names for their classes and attributes.
Extending the schema is not a reason to use ADAM instead of extending AD
schema. Using ADAM can bu justified by other reasons but we don't know
many things about your organization and this application to make
statement use or not to use ADAM\AD.
--
Tomasz Onyszko
http://www.w2k.pl/ - (PL)
http://blogs.dirteam.com/blogs/tomek/ - (EN)
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.activedir.org/ml/threads.aspx
