> Look into Centrify or native Win2k3r2 AD posix extensions. > > Mac/linux/whatever should all be able to be configured natively to > authenticate against AD via kerberos kinits, as well as to look their > authorization data up in LDAP. On linux, this is achieved through > pam_krb5 and nss_ldap, and I have no idea about linux.
Oh yeah - using authconfig, for the always-onsite linux servers, I have no problem joining the AD domain, and authenticating via LDAP or Kerberos. That's not the question. Suppose if I wanted to support linux laptops just like I do windows laptops. The only choice I know of, since those laptops leave the home network and need to continue functioning even though the AD server is unavailable ... is to create standalone local user accounts in those laptops. And further to that - there are actually two questions - I'm also curious about Novell, even though I'm not trying to solve any particular problem, I just simply don't know what they do. _______________________________________________ bblisa mailing list [email protected] http://www.bblisa.org/mailman/listinfo/bblisa
