adam fisher wrote: > Kenneth, > > I would have to agree with Micheal, LDAP is really the way to go. > > I have set this up on a number of occasions and it really isn't that > difficult. It makes bringing up new servers rather easy as well. > > Adam
Do you have suggestions on how to avoid LDAP schema nightmares? The problem we ran into in the past with trying to use an LDAP server for a single sign on solution is this application used a different schema than this application, and so on and so on. And updating entries or adding to the schema was a technical nightmare. The only lightweight thing about LDAP is communication protocol. Administration of LDAP is FAR from lightweight. In addition to the portability, and maintenance issues, I also have heard that there are numerous security issues with LDAP as well. /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
