-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
> This gets me to thinking, does LDAP fit into this somehow? I know > it's something AD does. I'm wondering, how does one centrally manage > the user accounts? Actually Active Directory uses Kerberos to do the actual authenticating. LDAP is a part of the picture but it is not itself an authentication mechanism. Complicated stuff, but there is more than one way to do it. If you have a pure, modern Linux network, PAM allows all sorts of crazy things. By replacing the default Windows GINA, with say something like PGINA (more info here: http://www.pgina.org/?page_id=3), you can hook Windows into this mix as well. Generally, how one centrally manages user accounts depends 90% of the time on what is already in place. Oh, and PGINA allows you to authenticate a Windows box against an ssh server. It is a pretty cool project. You may also wish to look at PAM (http://www.kernel.org/pub/linux/libs/pam/). -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.3 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGgfvwwRXgH3rKGfMRAl7xAJ9C4mPeKqScer1aSHxBJimvurs5EgCfZXB9 J3ILnheebHTP/DbPt9E/vss= =UNjR -----END PGP SIGNATURE----- _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
