What you've all told me confirms that the process involves kind of a batch sync. This would be fine as I can hand off LDIF to them or process it using basic ldap calls myself. Having AD set up with high encryption is no problem and they've already done it, per my request. No clear-text passwords so I'm hoping that an LDIF feed will be accepted. Also, checking what you've done with Net::LDAPS, Chris.
Above all I wanted to avoid having to code up stuff using the Win32 modules... or explaining to "them" how to do it.
We've been talking about setting up a Samba server to handle their authentication needs. Technically its possible but strategically, not sure right now.
Also, started looking at this project: http://acctsync.sourceforge.net/
Again, thanks for each of your fast and helpful responses.
Sincerely, Michael
