[unisog] Windows ADS authenticating to LDAP server

Ryan Dorman Ryan.Dorman at millersville.edu
Wed Jun 14 13:26:55 GMT 2006


Pgina is an option if you need authentication only without any of the other
"benefits" of having AD.

We are also in a similar situation.  We use the SunONE LDAP server and it
includes a tool called IDSync that allows synchronization between an LDAP
server and AD including encrypted passwords.  I believe that this
functionality is also available in the Red Hat directory server.  This would
give you a cheaper option perhaps.

http://www.redhat.com/docs/manuals/dir-server/ag/7.1/sync.html
-- 
Ryan Dorman, CCNP
Network Engineering Specialist
Millersville University
717.871.5883



On 6/13/06 10:24 PM, "Cosmin Stejerean" <cstejerean at gmail.com> wrote:

> I doubt it is possible to authenticate people in your domain against a
> 3rd party LDAP server, but you can potentially get rid of the LDAP
> server and use your domain controller as your central ldap server, or
> install a product that will synchronize user accounts between the two.
> 
> Regards,
> 
> Cosmin Stejerean
> 
> On 6/13/06, John York <YorkJ at brcc.edu> wrote:
>> At the college level, all our student resources are controlled by a
>> Windows ADS domain.  At the system level (state-wide community college
>> system) student accounts are maintained centrally on a server that
>> allows LDAP authentication.  Does anyone know of a product we can
>> install on our student windows domain to authenticate to the central
>> LDAP server?  We're fairly small, and aren't looking to write something
>> from scratch.
>> 
>> Thanks
>> John
>> 
>> John York
>> Network Engineer
>> Blue Ridge Community College
>> 
>> _______________________________________________
>> unisog mailing list
>> unisog at lists.sans.org
>> http://www.dshield.org/mailman/listinfo/unisog
>> 
> 



More information about the unisog mailing list