Is it enirely possible to log into Active Directory via Linux / FreeBsd ? I've found a few a few articles on logging into LDAP , but I'm unsure whether this would work with AD . Has anyone tried this ?
Active Directory w Linux / FreeBSD Question
- Thread starter djdrastic
- Start date
Services for Unix (SFU) would likely work, but it's a large undertaking. I don't know that much about it, but I do know that it extends/modifies the Active Directory Schema in order to make it more Linux/Unix friendly.
The second, and likely more attractive option is Winbind. I'm not sure how far along this project is, but basically Winbind unifies UNIX and NT account management by allowing a UNIX box to become a full member of a NT domain.Once this is done the UNIX box will see NT users and groups as if they were native UNIX users and groups, allowing the NT domain to be used in much the same manner that NIS+ is used within UNIX-only environments.
WinBIND
There's some starting points, anyhow. Linux/Unix isnt really my thing
The second, and likely more attractive option is Winbind. I'm not sure how far along this project is, but basically Winbind unifies UNIX and NT account management by allowing a UNIX box to become a full member of a NT domain.Once this is done the UNIX box will see NT users and groups as if they were native UNIX users and groups, allowing the NT domain to be used in much the same manner that NIS+ is used within UNIX-only environments.
WinBIND
There's some starting points, anyhow. Linux/Unix isnt really my thing
For starters, SFU will help you, but I don't know how far. It's really designed for UNIX servers and workstations. You can log into an LDAP-compliant server, you will need to use the entire CN of the object.
For instance. I you had a user account called JDOE (and the full name was John Doe), and it resided in an OU called USERS, that resided in a doman name called SOMEDOMAIN.INT, your LDAP name would be:
CN=John Doe, OU=TEST, DC=SOMEDOMAIN, DC=INT
You could set the "base" equal to "OU=TEST, DC=SOMEDOMAIN, DC=INT", and that should work.
OR, if you were going to use SFU, you would do the following:
Well, you will be logging into a Windows 2000 domain, but you need to setup the DC as an NIS server. Then, the LINUX box needs to be setup to authenticate to an NIS Directory, which you will specify your Windows 2000 DC that has SFU installed.
HTH.
For instance. I you had a user account called JDOE (and the full name was John Doe), and it resided in an OU called USERS, that resided in a doman name called SOMEDOMAIN.INT, your LDAP name would be:
CN=John Doe, OU=TEST, DC=SOMEDOMAIN, DC=INT
You could set the "base" equal to "OU=TEST, DC=SOMEDOMAIN, DC=INT", and that should work.
OR, if you were going to use SFU, you would do the following:
Well, you will be logging into a Windows 2000 domain, but you need to setup the DC as an NIS server. Then, the LINUX box needs to be setup to authenticate to an NIS Directory, which you will specify your Windows 2000 DC that has SFU installed.
HTH.
TRENDING THREADS
-
Discussion Zen 5 Speculation (EPYC Turin and Strix Point/Granite Ridge - Ryzen 9000)- Started by DisEnchantment
- Replies: 25K
-
Discussion Intel Meteor, Arrow, Lunar & Panther Lakes + WCL Discussion Threads
- Started by Tigerick
- Replies: 22K
-
Discussion Intel current and future Lakes & Rapids thread- Started by TheF34RChannel
- Replies: 23K
-
News NVIDIA and Intel to Develop AI Infrastructure and Personal Computing Products- Started by poke01
- Replies: 411
-
Facebook
Twitter