On Fri, Mar 18, 2011 at 8:31 AM, MOKRANI Rachid <rachid.mokrani at ifpen.fr> wrote: > Hi, > > I'm looking a wiki or share experience for replace NIS authentication by > an existing Active directory Server (W2003). The problem is on the > management of id and gid. > > How to move 1000 actual NIS users to AD ? > How to keep the same id and gid for this 1000 users ? > What's happen with nfs linux server and acess with gid and/id ? > Use the same user/password for linux and Windows clients > authentification? > We test a solution who work very well. It's Centrify comercial software > http://www.centrify.com/directcontrol/overview.asp . But we are looking > a freeware solution. (kerberos ? openldap ? pam ? ...) > > Does someone has already successfully replace NIS by Ad authentification > with freeware solution ? The amount of time burned setting up the migration, which is otherwise done manually to configure uid's and gid's consistently, very much justifies the purchase of a single Centrify license for an "adnisd" server. Get *that* running, switch your NIS to point to that, and you've done all the hard integration work. That more than justifies the cost of a license or a pair of licenses. It can otherwise be done manually, but the data entry time wasted for your engineers well justifies the price of a Centrify license or two.