Solved

can we use kerberos with openldap to authenticate Linux clients

Posted on 2010-09-18
3
603 Views
Last Modified: 2012-05-10
Hi,
I'm planning to replace Windows clients with Ubuntu desktops and use a openldap server to replicate user account from the windows server. My objectives are ad follows:
1. Windows AD server and OpenLDAP server should coexist in same domain.
2. Openldap should be able to replicate original user accounts from Windows and thereafter keep in sync  new users and passwords
3.  All Ubuntu users should use Openldap server for authentication (Microsoft poses licence restrictions if users authenticate directly to AD)
4. Ubuntu users should use "Kerberos" for authentication (not TLS or SSL)

Is it possible to achieve this.  If yse can someone guide me to the right tutorial

Thanks in advance  
0
Comment
Question by:taas
3 Comments
 
LVL 61

Expert Comment

by:gheist
ID: 33715903
It does not work.
You can use other LDAP or other kerberos for Ubuntu clients.
0
 
LVL 1

Accepted Solution

by:
natlinthara earned 400 total points
ID: 33723326
0
 

Author Closing Comment

by:taas
ID: 33756120
This guide has a way to go
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

As network administrators; we know how hard it is to track user’s login/logout using security event log (BTW it is harder now in windows 2008 because user name is always “N/A” in the grid), and most of us either get 3rd party tools, or just make our…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now