Michael L Torrie wrote: > Kerberos should form the center of any authentication system, even when > you use LDAP. LDAP was never intended to provide authentication > (although it can, and many use it as such). Rather it's intended to > provide the information necessary for accounts themselves to exist. > uidNumber to uid mapping, homedirectory, etc. So kerberos and LDAP are > both important, but both perform different roles. Think of LDAP > as /etc/passwd and Kerberos as /etc/shadow. > > So on Linux I set it up to use kerberos authentication and LDAP user > information. > > With kerberos, if everything's kerberized, life is good indeed. In fact > > Michael
Beautiful! Thank you for your response, Kenneth /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
