LDAP with Windows 2003 Active Directory?

[ultimatebob]

I'm looking for information on how to integrate a Windows 2003 Active Directory controller with LDAP authentication. Does anyone here have a good tutorial or HOWTO guide on how to complete something like this? I'm a bit of a newbie when it comes to Active Directory, so I'm not sure where to start.

 

[Smilin]

Give more info on exactly what you are trying to do. The question is a bit odd. If I get an understanding I'll maybe be able to explain why.

AD is basically using the LDAP structure to store. LDAP queries to look stuff up are leveraged during kerberos authentication but kerberos and ntlm are the authentication methods, ldap calls are a way to look stuff up, not really a way to authenticate.

 

[BucNews]

Yeah I need more information as well.

Are you trying to integrate an application with AD using LDAP or are you trying to integrate a Windows Server 2003 box with an existing LDAP deployment?

 

[ultimatebob]

Originally posted by: BucNews
Yeah I need more information as well.

Are you trying to integrate an application with AD using LDAP or are you trying to integrate a Windows Server 2003 box with an existing LDAP deployment?

I'm trying to integrate Active Directory on a Windows 2003 Server with an existing LDAP server. The server has a list of all of the e-mail addresses in the company (in user@domain.com format), which they want to use as their logon ID for Rational ClearCase.

 

[spyordie007]

So you are trying to synchronize user accounts between your existing LDAP server and Active Directory (which is certainly possible)? You'd have to do something like IIFP to query your existing LDAP server and than create/sync accounts on the domain from the MIIS MetaVerse.

Good luck though, it's not for the faint of heart.

 

[stash]

Ah MIIS isn't so bad, especially for something like this. I'm pretty sure you need the full blown MIIS though ($$$), IIFP will only sync with AD, ADAM and Exchange.

 

[Smilin]

MIIS isn't that bad. It's definately an RTFM before you begin tho. Do your reading before you start and you'll be fine. Don't do your reading, and yea you can maul some serious stuff.

 

[smashp]

Originally posted by: spyordie007
So you are trying to synchronize user accounts between your existing LDAP server and Active Directory (which is certainly possible)? You'd have to do something like IIFP to query your existing LDAP server and than create/sync accounts on the domain from the MIIS MetaVerse.

Good luck though, it's not for the faint of heart.

MIIS Servers are FUN. Boy I Love the METAverse.


Cost wise, Bend over

 

[spyordie007]

Originally posted by: stash
Ah MIIS isn't so bad, especially for something like this. I'm pretty sure you need the full blown MIIS though ($$$), IIFP will only sync with AD, ADAM and Exchange.

Good point, forgot that IIFP only does AD/ADAM/GAL

In-and-of-itself MIIS inst that bad, but like was said the real work goes in upfront reading, planning and designing before you deploy it.

Erik