Posted by: Anonymous Coward
on February 15, 2006 03:30 AM
Yes, you can. But it does not require nss_LDAP.
All that is really required is KRB5 for authentication using the KRB5 PAM modules and samba 3's winbind daemon. KRB5 handles authentication against the Kerberos 5 services provided by your Microsoft Domain controller (win 2000 or 2003 domain controller w/active directory). Winbind can then be used to map windows SID's to Unix uID's/gID's respectively. This would eliminate the need to support accounts on both systems without having to modify the AD schema.
Learn about Linux
Download Linux
Get Linux help
Re:MS services for Unix *required*?
Posted by: Anonymous Coward on February 15, 2006 03:30 AMAll that is really required is KRB5 for authentication using the KRB5 PAM modules and samba 3's winbind daemon. KRB5 handles authentication against the Kerberos 5 services provided by your Microsoft Domain controller (win 2000 or 2003 domain controller w/active directory). Winbind can then be used to map windows SID's to Unix uID's/gID's respectively. This would eliminate the need to support accounts on both systems without having to modify the AD schema.
#