?
Solved

can we use kerberos with openldap to authenticate Linux clients

Posted on 2010-09-18
3
Medium Priority
?
621 Views
Last Modified: 2012-05-10
Hi,
I'm planning to replace Windows clients with Ubuntu desktops and use a openldap server to replicate user account from the windows server. My objectives are ad follows:
1. Windows AD server and OpenLDAP server should coexist in same domain.
2. Openldap should be able to replicate original user accounts from Windows and thereafter keep in sync  new users and passwords
3.  All Ubuntu users should use Openldap server for authentication (Microsoft poses licence restrictions if users authenticate directly to AD)
4. Ubuntu users should use "Kerberos" for authentication (not TLS or SSL)

Is it possible to achieve this.  If yse can someone guide me to the right tutorial

Thanks in advance  
0
Comment
Question by:taas
3 Comments
 
LVL 62

Expert Comment

by:gheist
ID: 33715903
It does not work.
You can use other LDAP or other kerberos for Ubuntu clients.
0
 
LVL 1

Accepted Solution

by:
natlinthara earned 1600 total points
ID: 33723326
0
 

Author Closing Comment

by:taas
ID: 33756120
This guide has a way to go
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
A bad practice commonly found during an account life cycle is to set its password to an initial, insecure password. The Password Reset Tool was developed to make the password reset process easier and more secure.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

593 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question