Anyone looking to replace Active Directory?

[LuckyTaxi]

Very interesting, but I'm not sure if I'll make the jump just yet.

Fedora Directory Server

 

[Nothinman]

Unless it includes kerberos as well as LDAP, you won't be able to replace AD with it by itself.

 

[spyordie007]

There are plenty of other features that are considered part of Active Directory as well (i.e. Group Policy). Some can be covered by other open source technologies and some cannot.

 

[Nothinman]

I'm not sure how GPOs are deployed, but if they're just LDAP objects or properties they could be added to another LDAP implementation. But if they're a special case (and what isn't in the Windows world) you might need to run Samba for that, they're working hard on making the current dev branch be able to assume AD roles.

 

[stash]

There's two parts to every GPO: an Active Directory portion (GPC), and a file system portion (GPT). Clients that process GPOs make an SMB call to a DFS share (\\domain.local\sysvol) to pull down the GPT. The AD piece of the GPO is basically to link it to an object (OU) in AD. I don't think the clients have any interaction with the GPC.