Hi, University of Bergen is setting up a unix/linux Kerberos realm to handle logons on our unix/linux clients and servers (about 1500). Our problem is that all 30.000 users needs principals on the KDC, and we'd rather not have to run all of them through having to type their password somewhere.
They're all in AD (and in NIS), can anyone advice as to a good path to duplicate data over, including passwords? LDAP export and import and then using Heimdal's support for having an LDAP backend is the next thing I'll try - any better ideas out there? Google gives me nothing which doesn't involve having to reenter all user passwords, but we can't be the first large setup to have this issue? Bjørn -- Bjørn Tore Sund Phone: (+47) 555-84894 Stupidity is like a System administrator Fax: (+47) 555-89672 fractal; universal and Math. Department Mobile: (+47) 918 68075 infinitely repetitive. University of Bergen VIP: 81724 Support: http://bs.uib.no Contact: [EMAIL PROTECTED] Direct: [EMAIL PROTECTED] ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
