On Fri, Mar 18, 2011 at 8:31 AM, MOKRANI Rachid rachid.mokrani@ifpen.fr wrote:
Hi,
I'm looking a wiki or share experience for replace NIS authentication by an existing Active directory Server (W2003). The problem is on the management of id and gid.
How to move 1000 actual NIS users to AD ? How to keep the same id and gid for this 1000 users ? What's happen with nfs linux server and acess with gid and/id ? Use the same user/password for linux and Windows clients authentification?
We test a solution who work very well. It's Centrify comercial software http://www.centrify.com/directcontrol/overview.asp . But we are looking a freeware solution. (kerberos ? openldap ? pam ? ...)
Does someone has already successfully replace NIS by Ad authentification with freeware solution ?
The amount of time burned setting up the migration, which is otherwise done manually to configure uid's and gid's consistently, very much justifies the purchase of a single Centrify license for an "adnisd" server. Get *that* running, switch your NIS to point to that, and you've done all the hard integration work. That more than justifies the cost of a license or a pair of licenses.
It can otherwise be done manually, but the data entry time wasted for your engineers well justifies the price of a Centrify license or two.