I'm planning to replace Windows clients with Ubuntu desktops and use a openldap server to replicate user account from the windows server. My objectives are ad follows:
1. Windows AD server and OpenLDAP server should coexist in same domain.
2. Openldap should be able to replicate original user accounts from Windows and thereafter keep in sync new users and passwords
3. All Ubuntu users should use Openldap server for authentication (Microsoft poses licence restrictions if users authenticate directly to AD)
4. Ubuntu users should use "Kerberos" for authentication (not TLS or SSL)
Is it possible to achieve this. If yse can someone guide me to the right tutorial
Thanks in advance