Yes. We do all of our user administration for both NT/2000 and Linux in the AD at my place of employment. If all you want to do is authenticate local /etc/passwd users to the AD, then you can use pam_ldap or pam_smb_auth. If you want to do ALL user administration in the Active Directory, it gets a little more complicated.
In order for this setup to work properly you need to use either MS Services for UNIX 2.0/3.0 Server for NIS (http://www.microsoft.com/windows/sfu/default.asp), or ADS4UNIX (http://www.css-solutions.ca/ad4unix/) to extended the AD schema. You could then use the PAM modules mentioned above for authentication (pam_ldap, pam_smb_auth), and use nss_ldap to grab the user information (home dir, shell, etc) out of the Active Directory. I am currently working on a Linux-ActiveDirectory HOWTO, but haven't been able to put some full-time effort towards it due to work. I hope to have something available for public consumption by the beginning or middle of November. If you have any specific questions about how to setup your system let me know. But to answer your question, yes, it can be done :) Regards, Andy. -----Original Message----- From: Chuck Carson [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 03, 2002 10:00 AM To: [EMAIL PROTECTED] Subject: LDAP Auth un RH 8.0 Has anyone got Red Hat, either 7.x or 8.0 to authenticate via ldap to a MS Active Directory server? Thanks, CC Chuck Carson Sr. Systems Administrator Syrrx, Inc. 10410 Science Center Drive San Diego, CA 92121 E: [EMAIL PROTECTED] W: 858.731.3540 M: 858.442.0827 ---------- This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
