?
Solved

Use LDAP for Windows Logon

Posted on 2011-03-01
3
Medium Priority
?
1,137 Views
Last Modified: 2012-08-13
Just a curiosity that I do not feel like browsing all LDAP or Windows forums for an answer, but I am curious if it is possible to redirect the Windows login to authenticate against an LDAP server.

The situation I'm encountering is that I have users whose credentials are kept on a server that is not trusted to my site's domain controllers, but I would still like to host user data. So it is imperative that they maintain credentials on the remote server, but can still log in to machines on my domain.

Thanks in advance for any help!!
0
Comment
Question by:SUNYESF
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 12

Expert Comment

by:Navdeep
ID: 35009876
Hi,

Do you mean that users are in account forest and data is in resource forest and there in no trust in between and you want user's to have access to the data in resource forest

"but can still log in to machines on my domain"
unless they have a user account on your domain they won't be able to login to your domain. However if they can access data if there is a trust relationship between the two forest.

May be you can explain more about your AD structure and requirement.
0
 

Author Comment

by:SUNYESF
ID: 35010702
Yeah, looking back that wording could've used some more coffee...

Here's the situation:
My campus (and independent network) is physically and organizationally linked to another geographically close campus. Users on campus2 utilize computers on my campus, but thus far this has been achieved through placing my computers in the campus2 domain.

However, impending changes to the policy structure of campus2 put me in a position to not want policy inheritance. So what I would like to do is pull all units accessed by users of campus2 into my domain.

I feel this would not be a problem if the authorities of campus2 would allow for a trust between our independent active directory structures, but they will not. Thus I am wondering if authentication is possible via some other method that does not require an AD trust between domain controllers or similarly controlled connection -- maybe something like LDAP.
0
 
LVL 12

Accepted Solution

by:
Navdeep earned 2000 total points
ID: 35010850
if you want to use native windows functionality then you need to use forest-trust relationship, unless otherwise you get a third party app created
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
Always backup Domain, SYSVOL etc.using processes according to Microsoft Best Practices. This is meant as a disaster recovery process for small environments that did not implement backup processes and did not run a secondary domain controller that ne…
This Micro Tutorial will teach you how to change your appearance and customize your Windows 7 interface to your unique preference. This will be demonstrated using Windows 7 operating system.
This Micro Tutorial will give you a basic overview of Windows Live Photo Gallery and show you various editing filters and touches to photos you can apply. This will be demonstrated using Windows Live Photo Gallery on Windows 7 operating system.
Suggested Courses
Course of the Month15 days, 10 hours left to enroll

741 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question