[CentOS] Replace NIS by Active Directory

Fri Mar 18 12:31:24 UTC 2011
MOKRANI Rachid <rachid.mokrani at ifpen.fr>

Hi,

I'm looking a wiki or share experience for replace NIS authentication by
an existing Active directory Server (W2003). The problem is on the
management of id and gid. 
 
How to move 1000 actual NIS users to AD ?
How to keep the same id and gid for this 1000 users ?
What's happen with nfs linux server and acess with gid and/id ?  
Use the same user/password for linux and Windows clients
authentification?
 

We test a solution who work very well. It's Centrify comercial software
http://www.centrify.com/directcontrol/overview.asp . But we are looking
a freeware solution. (kerberos ? openldap ? pam ? ...)
 
Does someone has already successfully replace NIS by Ad authentification
with freeware solution ?
 
Regards.
__________________________
Notre adresse de messagerie évolue pour plus de simplicité vers : prenom.nom at ifpen.fr. La racine @ifpenergiesnouvelles.fr reste néanmoins active. 

Our e-mail address is changing to firstname.surname at ifpen.fr. Nevertheless, messages sent to the domain @ifpenergiesnouvelles.fr will still be delivered.  

Ce message (et toutes ses pièces jointes éventuelles) est confidentiel et établi à l'intention exclusive de ses destinataires. Toute utilisation de ce message non conforme à sa destination, toute diffusion ou toute publication, totale ou partielle, est interdite, sauf autorisation expresse. IFP Energies nouvelles décline toute responsabilité au titre de ce message.
This message and any attachments (the message) are confidential and intended solely for the addressees. Any unauthorised use or dissemination is prohibited. IFP Energies nouvelles should not be liable for this message.

Visitez notre site Web / Visit our web site : www.ifpenergiesnouvelles.fr / www.ifpenergiesnouvelles.com
__________________________