Hi! Check out nss_ldap:
http://www.padl.com/OSS/nss_ldap.html (and their pam_ldap at http://www.padl.com/OSS/pam_ldap.html) There's a mailing list archive for nss_ldap at http://www.netsys.com/nssldap/index.html I used to watch the list and I know people have done it using the software above. You could use openldap/solaris-built-in ldap to contain the AD data and point both your Solaris and Windows boxes at it. Good luck! ----- Original Message ----- From: "Betsy Schwartz" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, October 30, 2002 8:19 AM Subject: BBLISA: Win2k Active Directory, Solaris, and LDAP > Is anyone here exploring synchronizing passwords between Active Directory, > Solaris, and LDAP? > > I found some info on Microsoft's site about syncing Active Directory to NIS, > ( http://www.microsoft.com > /technet/prodtechnol/windows2000serv/deploy/sfu/psync.asp ) using a PAM > from Microsoft. I'd like to find someone who's actually *done* this. > > The idea of plugging Microsoft security modules into Solaris just makes me > cringe. > > And, LDAP is wanted for other reasons, so just using NIS might not be the > full solution. > (doesn't matter which LDAP server) > > If I understand this correctly, there's no way to get around Active > Directory on the Windows side. But I'd like to try to avoid making it the > master for the Unix side. > > I'm interested in any thoughts or clues on this > (this is all hypothetical right now > > > --- > Send mail for the `bblisa' mailing list to `[EMAIL PROTECTED]'. > Mail administrative requests to `[EMAIL PROTECTED]'. > --- Send mail for the `bblisa' mailing list to `[EMAIL PROTECTED]'. Mail administrative requests to `[EMAIL PROTECTED]'.
