Active Directory for Linux draws closer (iTWire)
Posted Feb 1, 2009 4:31 UTC (Sun) by jgg
In reply to: Active Directory for Linux draws closer (iTWire)
Parent article: Active Directory for Linux draws closer (iTWire)
However using AD in Linux/Unix is a kludge. It's ugly and difficult. To get the best use out of Active Directory they must be using Windows systems and Microsoft tools.
Nonsense, the samba team has done a fantastic job with Samba 3.2 and integrating NSS with AD through winbind. The original linked article is dead wrong, Linux with samba is a perfectly fine AD member workstation or member server. It is dead easy to setup as well.
In my experience modern versions of winbind are the *best* directory service client available on Linux. Certainly far better that than typical mismatch of pam/nss-ldap, kerberos and NIS. It has all the best features together - Kerberos for everything, kerberos LDAP lookup for Unix NSS data, caching, multi-server support, etc.
That alone is why Samba 4 should be so interesting to Unix admins everywhere, because there will finally be a OSS server that can support winbind..
to post comments)