Posted by: Administrator
on December 17, 2004 01:18 PM
A couple of other things to point out:
1. Authentication is not the same as directory services. If you want to use the automounter, or fold the NIS information into directory services, it's generally beyond AD. 2. Applications that use LDAP natively *all* want to add their own attributes. MS says that if you modify the AD schema, they will not support the results, and that you will be on your own should they change the default schema (as in an OS upgrade with longhorn). As such, you're introducing a lot of danger into your AD forest by modifying the schema. 3. AD is not fully ldap 3 compatible. There are some things that don't work right.
As such, the corporation I work for decided to deploy LDAP and AD and synchronize the two. This allows applications that need AD to use AD, and those that need LDAP to use LDAP without any translations or introduced problems.
Learn about Linux
Download Linux
Get Linux help
directory services
Posted by: Administrator on December 17, 2004 01:18 PM1. Authentication is not the same as directory services. If you want to use the automounter, or fold the NIS information into directory services, it's generally beyond AD.
2. Applications that use LDAP natively *all* want to add their own attributes. MS says that if you modify the AD schema, they will not support the results, and that you will be on your own should they change the default schema (as in an OS upgrade with longhorn). As such, you're introducing a lot of danger into your AD forest by modifying the schema.
3. AD is not fully ldap 3 compatible. There are some things that don't work right.
As such, the corporation I work for decided to deploy LDAP and AD and synchronize the two. This allows applications that need AD to use AD, and those that need LDAP to use LDAP without any translations or introduced problems.
#