On Tue, Jan 28, 2014 at 8:56 AM, Sorin Srbu <Sorin.Srbu at orgfarm.uu.se> wrote: >> -----Original Message----- >> From: centos-bounces at centos.org [mailto:centos-bounces at centos.org] On >> Behalf Of Logan McNaughton >> Sent: den 28 januari 2014 14:33 >> To: CentOS mailing list >> Subject: Re: [CentOS] NIS or not? >> >> Where I work we use NIS + Kerberos (Active Directory). We have about 150 >> machines at our site. It works quite well, as someone said, the big draw >> back to NIS is that it sends passwords insecurely, but if you use Kerberos >> for authentication it's really quite easy to manage. > > We do have Active Directory as well, but only for the Windows clients. > > But I'd rather keep them separated. > > Kerberos on linux. Is that a pain or a bigger pain? > Whenever I've worked with Kerberos on Windows I've come out all sweaty > afterwards... 8-S > Then stop playing with yourself already! ;) Kerberos on linux works quite well; keep everyone's clock within 5min of the auth server and you will be ok. I have not done sssd yet though. I did have timeout with nfs automount issues due to expired tickets, but that setup is old. > -- > //Sorin > > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >