On Dec 29, 2008, at 10:57 AM, Neil Neely wrote:
> We're looking at integrating our *nix machines with our AD servers and
> are trying to find the "Best" way to do this. In this case I'm
> finding my google-fu isn't working in my favor... there is no shortage
> of information. Every time I think I have a complete grasp of ways
> this can be done I find one more. So there are plenty of resources
> for how to do this using technique X, what I really need is some
> feedback from people who are further along in this evolution that can
> give some perspective on which approach they think is the best.
I wouldn't claim it's necessarily the "best", but I've done it with
Samba winbindd. The procedures I used are documented here:
http://www.occam.com/tools/ad_auth.html
which includes a pointer to a tool I wrote to keep UIDs and GIDs in
sync on the UNIX side, important if you have NFS in your environment.
Not real pretty, but it works.
--------------------------------------------------------------------
Leon Towns-von Stauber http://www.occam.com/leonvs/
"We have not come to save you, but you will not die in vain!"
_______________________________________________
Tech mailing list
[email protected]
http://lopsa.org/cgi-bin/mailman/listinfo/tech
This list provided by the League of Professional System Administrators
http://lopsa.org/
