At 03:32 PM 11/22/2002 -0600, you wrote: >On 22 Nov 2002, Shannon Roddy wrote: >I would say LDAP with SSL is your best bet. Kerberos is a pain to >implement/maintain. NIS is inherently insecure. NIS+ is better, but >still a pain, and i don't think Linux NIS+ support is any good. > >See www.padl.com. They are the guys that maintain the pam_ldap module, >and have lots of LDAP info in general. Also i think the Linux LDAP howto >covers this (using OpenLDAP). We use eDirectory, but LDAP is LDAP. :) >On Redhat, use authconfig to set it up once your directory is running. >It'll be changing some stuff in /etc/nsswitch and /etc/pam.d/system-auth.
Good ideas. Shannon, you want to authenticate your UNIX users against a Windows domain? Not the other way around? That will make a difference. --- Dustin Puryear <[EMAIL PROTECTED]> Puryear Information Technology Windows, UNIX, and IT Consulting http://www.puryear-it.com
