On Wed, 18 Mar 2009, Grant Parnell wrote:
I've not really dealt with LDAP much but for the application I'm writing it
will need to act as an Active Directory Server at some stage in the future.
We have our own database of people and when we set login='Yes' we need to
create the user account and apparently a heap of other stuff such that people
using Windows workstations can now login to the domain, email, proxy, ... etc
with those credentials. I have it already doing the standard unix login with
no LDAP. ie /etc/passwd, /etc/group, /etc/shadow.
I appreciate that this is a LOT of stuff and there is the possibility of
payment to get this done. Haven't run it by the boss yet but from a time
perspective it would take me far too long.
What I really need to know sooner rather than later is what data I need to
store in our postgresql database. IE what the LDAP schema is. We can work out
the other bits later.
I have done a little research and am now more confused than ever..
Like, I started here...
http://msdn.microsoft.com/en-us/library/ms675085(VS.85).aspx
Also would be interested in finding other products (open or not) that do this
running on Ubuntu Hardy preferably.
OpenLDAP
Sun JES5
OpenDirectory
Are all products that will run on Linux that will do LDAP v3 better than
AD ever could. The AD schemas are pretty much setup for MS systems,
so you need to ensure that whatever product you install/deploy
that it contains the right schemas ie in the case of AD, you would want
to extend the schema to include posix objectclass and attributes
or you would not be able to store UNIX passwd information properly.
Also, if you want to do "LDAP-like" authentication, perhaps you
could use Mysql/Postgres in combination with PAM to
create a backend that will provision users for your applications.
rachel
--
Rachel Polanskis Kingswood, Greater Western Sydney, Australia
[email protected] http://www.zeta.org.au/~grove/grove.html
The price of greatness is responsibility.
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
