On Thu, 2007-07-19 at 10:01 -0400, Peter Matulis wrote: > Hi Server team, > > The Support team receives requests for single-signon authentication with > Active Directory on a regular basis. So this work is a definite plus > from the paid customer's point of view. I've managed to implement this > manually with the exception of mounting an AD share automatically (i.e. > user's home share) using pam_mount. I began to write a whitepaper on > it. Hopefully pam_mount can also be included in the > 'auth-client-config' work.
auth-client-config deals with *only* the nsswitch.conf and pam auth, account, password and session files. If you have a configuration for these that is more or less standard for authenticating with AD, please submit and they can be added as profiles for auth-client-config. We don't have the whole infrastructure in place, as Rick said, but his ldap-auth-client package will most likely be the basis for other packages like 'kerberos-auth-client' and 'ad-auth-client' (if AD doesn't easily fit in somewhere else). I'm hopeful that since there seems to be so much interest in network authentication, more than just ldap authentication will make it into gutsy-- but that is not for me to decide. Jamie -- ubuntu-server mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-server
