Well I figured at all out using Samba's WinBind and Kerberos. I will post the docs today or tomorrow, after I write them, to my blog at http://www.ctdx.net for everyones viewing pleasure.
--- Chris Edwards Smartech Corp. Div. of AirNet Group http://www.airnetgroup.com http://www.smartechcorp.net [EMAIL PROTECTED] P: 423-664-7678 x114 C: 423-593-6964 F: 423-664-7680 -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tom McLaughlin Sent: Tuesday, July 01, 2008 12:30 PM To: Chris Edwards Cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD and Active Directory On Thu, 2008-06-26 at 15:20 -0400, Chris Edwards wrote: > I have been put in charge of creating a single sign-on mechanism for our > Windows 2003 and FreeBSD servers. We are wanting to use Active Directory as > our LDAP server. I know of four different methods that could possibly work. > > 1. OpenLDAP > 2. Radius > 3. NIS > 4. WinBind / Samba > > Which is the most excepted/supported way to do this? Several of the severs > are very old, 4+ years old. > > Thanks for any help, > > --- > > Chris Edwards You need to handle two things, user identification and user authentication. OpenLDAP (actually nss_ldap) will do the id part and kerberos will do the authentication part. Unfortunately my AD related links for this are at work and I'm at home today. tom -- | tmclaugh at sdf.lonestar.org tmclaugh at FreeBSD.org | | FreeBSD http://www.FreeBSD.org | _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"