Lpic 300, for sure. Get rid of openldap, show "LDAP"&ldap-utils + FreeIPA+Samba4.
That makes sense to me. So far, openldap has no direct relationship with Samba4, it made sense for samba3, but not anymore, and as we lost the auth integration with openldap when 301 got removed, it's there in 300 doing little or nothing.
IMHO a chapter or two on pentesting would make 303 way more attractive (students always ask me to extend a bit on attack tools: enumeration, scanning & bruteforce logins).
Regards,
Kenneth
On Nov 18, 2018 1:54 PM, Fabian Thorns <[email protected]> wrote:
Hi there,sorry for starting another thread. After spending some time thinking about your mails regarding 300 and 303, I'd like to ask for your opinion on one specific question that seems crucial to me: Where do we want to cover FreeIPA and SSSD? Do we see them mainly as tools to harden systems or as tools to integrate authentication realms (either 'mixed' or 'non-mixed')?If we decide for the latter, we might consider moving FreeIPA from 303 to 300, extend it there and maybe replace OpenLDAP with 389 Server (and potentially do the same for LPIC-2 in the next revision). This seems a reasonable use of the weights freed up by NT4 domains; and we might fill the gap it leaves in 303 with some basic pentesting (this should be discussed elsewhere, though).What do you think?Fabian--Fabian Thorns <[email protected]> GPG: F1426B12Director of Certification Development, Linux Professional Institute
_______________________________________________ lpi-examdev mailing list [email protected] http://list.lpi.org/cgi-bin/mailman/listinfo/lpi-examdev
