Hello
For the moment I manage the user in the network with win 2000 Server. I want to use an linux OS to manaxhe the network? Is this possible.
So. How can I organize and configure the Cent OS to use it as Active Directory or something like this, and to open all the existing users there, and then to shut down the win2000 Server and to Activate the CentOS as domain controller?
Can someone help me in this?
Thanks
Regards Adriatik ALLAMANI PO. Box: 253/1 Tirana / Albania Telephone: 00 355 4 257 368 Fax: 00 355 4 250 926 Email: aallamani@ert.gov.al
On Monday 23 July 2007 14:33:18 Adriatik Allamani wrote:
Hello
For the moment I manage the user in the network with win 2000 Server. I want to use an linux OS to manaxhe the network? Is this possible.
So. How can I organize and configure the Cent OS to use it as Active Directory or something like this, and to open all the existing users there, and then to shut down the win2000 Server and to Activate the CentOS as domain controller?
Can someone help me in this?
It really depends on what parts of AD are you using. To centralize user/password management and home directories OpenLDAP should be sufficient. But if you want to replace more sophisticated AD features (software deployment, etc.), ther is nothing good enough (and Open Source/Free) for Linux. If your environment is mostly Windows based, I'd stay with AD.
On Mon, 2007-07-23 at 15:31 +0200, zen@allegro.pl wrote:
On Monday 23 July 2007 14:33:18 Adriatik Allamani wrote:
Hello
For the moment I manage the user in the network with win 2000 Server. I want to use an linux OS to manaxhe the network? Is this possible.
So. How can I organize and configure the Cent OS to use it as Active Directory or something like this, and to open all the existing users there, and then to shut down the win2000 Server and to Activate the CentOS as domain controller?
Can someone help me in this?
It really depends on what parts of AD are you using. To centralize user/password management and home directories OpenLDAP should be sufficient. But if you want to replace more sophisticated AD features (software deployment, etc.), ther is nothing good enough (and Open Source/Free) for Linux. If your environment is mostly Windows based, I'd stay with AD.
I agree ... currently there is no drop-in replacement for AD on the *nix side. Possibly when Samba 4 is complete (about a year?) there will be since the goal is for a complete implementation of AD & File/Print services that are in Windows 2003. I've been playing with the preview versions, but it's still not complete enough to use yet.
Does anybody else know, do you need Services for Unix on the AD server to get the Posix schema?
We run Novell Netware, so have not had to connect to AD.
Regards, Paul Berger
On Tuesday 24 July 2007 06:12:15 Paul wrote: [...]
Does anybody else know, do you need Services for Unix on the AD server to get the Posix schema?
With Windows 2k3 R2 schema comes with systems (Identity Management for UNIX (IdMU)) i think. I also read that SFU can break things there, but didn't try it ;)
Regards,
zen@allegro.pl wrote:
On Monday 23 July 2007 14:33:18 Adriatik Allamani wrote:
Hello
For the moment I manage the user in the network with win 2000 Server. I want to use an linux OS to manaxhe the network? Is this possible.
So. How can I organize and configure the Cent OS to use it as Active Directory or something like this, and to open all the existing users there, and then to shut down the win2000 Server and to Activate the CentOS as domain controller?
Can someone help me in this?
It really depends on what parts of AD are you using. To centralize user/password management and home directories OpenLDAP should be sufficient. But if you want to replace more sophisticated AD features (software deployment, etc.), ther is nothing good enough (and Open Source/Free) for Linux. If your environment is mostly Windows based, I'd stay with AD.
Basically, the Samba that comes with CentOS-4 or CentOS-5 can do a WindowsNT type domain via LDAP. You can connect Windows servers and Clients (2000, 2003, XP ... not sure about vista) to this kind of domain and share printers, file servers, etc.
The CentOS-5 samba can JOIN an active directory domain as a file server, but it can not be a domain controller.
Thanks, Johnny Hughes
On Tue, 2007-07-24 at 07:09 -0500, Johnny Hughes wrote:
zen@allegro.pl wrote:
On Monday 23 July 2007 14:33:18 Adriatik Allamani wrote:
Hello
For the moment I manage the user in the network with win 2000 Server. I want to use an linux OS to manaxhe the network? Is this possible.
So. How can I organize and configure the Cent OS to use it as Active Directory or something like this, and to open all the existing users there, and then to shut down the win2000 Server and to Activate the CentOS as domain controller?
Can someone help me in this?
It really depends on what parts of AD are you using. To centralize user/password management and home directories OpenLDAP should be sufficient. But if you want to replace more sophisticated AD features (software deployment, etc.), ther is nothing good enough (and Open Source/Free) for Linux. If your environment is mostly Windows based, I'd stay with AD.
Basically, the Samba that comes with CentOS-4 or CentOS-5 can do a WindowsNT type domain via LDAP. You can connect Windows servers and Clients (2000, 2003, XP ... not sure about vista) to this kind of domain and share printers, file servers, etc.
The CentOS-5 samba can JOIN an active directory domain as a file server, but it can not be a domain controller.
If your interested in having a CentOS Samba server join an AD domain the following howto might be useful.
http://www.howtoforge.com/samba_ads_security_mode
Regards, Paul Berger
Thanks a lot for the help.
Actually I am interested in using CentOS as Server for the AD and not to join the CentOS to AD.
I need a help how to configure the centOS 5 as AD server for win2k and winXP users.
Regards Adriatik
On Tue, 2007-07-24 at 23:35 -0500, Paul wrote:
On Tue, 2007-07-24 at 07:09 -0500, Johnny Hughes wrote:
zen@allegro.pl wrote:
On Monday 23 July 2007 14:33:18 Adriatik Allamani wrote:
Hello
For the moment I manage the user in the network with win 2000 Server. I want to use an linux OS to manaxhe the network? Is this possible.
So. How can I organize and configure the Cent OS to use it as Active Directory or something like this, and to open all the existing users there, and then to shut down the win2000 Server and to Activate the CentOS as domain controller?
Can someone help me in this?
It really depends on what parts of AD are you using. To centralize user/password management and home directories OpenLDAP should be sufficient. But if you want to replace more sophisticated AD features (software deployment, etc.), ther is nothing good enough (and Open Source/Free) for Linux. If your environment is mostly Windows based, I'd stay with AD.
Basically, the Samba that comes with CentOS-4 or CentOS-5 can do a WindowsNT type domain via LDAP. You can connect Windows servers and Clients (2000, 2003, XP ... not sure about vista) to this kind of domain and share printers, file servers, etc.
The CentOS-5 samba can JOIN an active directory domain as a file server, but it can not be a domain controller.
If your interested in having a CentOS Samba server join an AD domain the following howto might be useful.
http://www.howtoforge.com/samba_ads_security_mode
Regards, Paul Berger
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Am Mittwoch, den 25.07.2007, 09:05 +0200 schrieb Adriatik Allamani:
Thanks a lot for the help.
Actually I am interested in using CentOS as Server for the AD and not to join the CentOS to AD.
I'm really sorry to tell you, but CentOS is unable to serve something like AD. The only thing that CentOS can do is serve a NT 4.0 style domain with Samba, but that lacks many of the AD-Features. For example you won't get kerberos or a real directory service. There is actually a method to run group policies with samba, but this requires a software that must be licensed for every windows pc.
If you're sure that you only need the NT4-features you can migrate, however I don't think you can use CentOS/samba as a drop-in replacement, because you'd have to rejoin the domain so the clients realize it isn't AD anymore.
Regards, Andreas Rogge
How about the other Linux OS? Feodora is able to serve AD?
Regards Adriatik Allamani
On Wed, 2007-07-25 at 09:41 +0200, Andreas Rogge wrote:
Am Mittwoch, den 25.07.2007, 09:05 +0200 schrieb Adriatik Allamani:
Thanks a lot for the help.
Actually I am interested in using CentOS as Server for the AD and not to join the CentOS to AD.
I'm really sorry to tell you, but CentOS is unable to serve something like AD. The only thing that CentOS can do is serve a NT 4.0 style domain with Samba, but that lacks many of the AD-Features. For example you won't get kerberos or a real directory service. There is actually a method to run group policies with samba, but this requires a software that must be licensed for every windows pc.
If you're sure that you only need the NT4-features you can migrate, however I don't think you can use CentOS/samba as a drop-in replacement, because you'd have to rejoin the domain so the clients realize it isn't AD anymore.
Regards, Andreas Rogge
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On Wednesday 25 July 2007 13:28:07 Adriatik Allamani wrote:
How about the other Linux OS? Feodora is able to serve AD?
No, it applies to all Linux distros.
PS. Please avoid top-posting
Adriatik Allamani wrote:
How about the other Linux OS? Feodora is able to serve AD?
No ... samba 3 can not be an AD Domain Controller.
Samba 4 will be able to be an AD Domain controller, however it is not fully functional yet.
http://wiki.samba.org/index.php/Main_Page#Samba4
Please do not top post
<snip>
Thanks, Johnny Hughes
Alexander Georgiev wrote:
Basically, the Samba that comes with CentOS-4 or CentOS-5 can do a WindowsNT type domain via LDAP. You can connect Windows servers and Clients (2000, 2003, XP ... not sure about vista) to this kind of domain and share printers, file servers, etc.
LDAP is not a requirement.
Right .. it is not strictly a requirement to use LDAP ... however, using ldap and smbldap-tools allows you to store more things in the directory server (addresses, phone, e-mail, etc.) than just NT domains alone and use that in an LDAP address book. It makes the domain control a little closer to AD.
When combined with a mail server solution like scalix or zimbra ... you have something close to AD / Exchange.
-
Adriatik Allamani -
Alexander Georgiev -
Andreas Rogge -
Johnny Hughes -
Paul -
zen@allegro.pl