Hi All,
I'm looking for any help anyone would like to offer. Where I work we have switched over from a Windows NT 4 domain to a Windows 2000 domain with Active Directory. In addition to the various Windows based servers we have, we also have approximately 10 Sun boxes running different versions of Solaris (2.6, 7, and 8). Each of these boxes currently uses local (/etc/passwd) information for logging on the users). My goal was to make things easier for the users by utilizing the built in kerberos functionality in Windows 2000. Up to this point, I have had limited success at best, My main two questions are, is something like this possible, and can kerberos be used "start to finish" on the various Sun boxes. In other words, can their initial telnet (preferrably ssh) login authenticate against the Active Directory and all (most) of the services they use thereafter do the same? I have read a fair bit about kerberos, and I understand the theory behind it. I also have read a good amount of documentation both Microsoft Windows and Sun based, regarding using kerberos, but I have not found any complete answer as to if it can be done, and how. If anyone could supply any additional information, or documentation I would appreciate it. Thanks in advance! Shawn Foran, MCSE Network Administrator Lenox, Inc.
