[sllug-members]: LDAP and Windows
goozbach at brooks.netradius.com
goozbach at brooks.netradius.com
Thu Sep 7 07:24:33 MDT 2006
On Tue, Sep 05, 2006 at 11:38:45AM -0600, Lamont R. Peterson wrote:
> On Monday 04 September 2006 09:28pm, Adam Barrett wrote:
> > I just starting looking into maintaining my users globally on my
> > network, and I was wondering, LDAP looks to be the best way to handle
> > users and logins for the whole, network, will it also support my
> > windows logins? Pros and cons?
>
> Install pGina [ http://www.pgina.org/ ] on your Windows boxes. It's a GPL
> (IIRC) open source replacement gina for Windows (works with everything from
> Win95 - XP & Server 2003). The "gina" is the equivalent of a display
> manager's greeter for UNIX. The gina does the authentication. pGina uses
> the exact same LDAP configuration that you use for UNIX/Linux/BSD systems for
> authentication. You don't have to change anything in your LDAP setup.
>
> We used pGina around here for a long time and it worked great (we do have to
> keep a couple of Windows boxes around for testing purposes and so forth).
> For nearly 2 years now, though, we've been Kerberized, so we don't use pGina
> much, anymore.
I ditto pGina, however there is another alternative if you're feeling
ambitious. LDAP integrated with Kerberos. It's quite a bit harder
initally however with the Kerberos server, you don't have to modify the
windows clients
More information about the sllug-members
mailing list