auth-client-config for integration with LDAPAuthentication
James Strandboge
jamie at strandboge.com
Thu Jul 19 15:11:08 UTC 2007
On Thu, 2007-07-19 at 10:01 -0400, Peter Matulis wrote:
> Hi Server team,
>
> The Support team receives requests for single-signon authentication with
> Active Directory on a regular basis. So this work is a definite plus
> from the paid customer's point of view. I've managed to implement this
> manually with the exception of mounting an AD share automatically (i.e.
> user's home share) using pam_mount. I began to write a whitepaper on
> it. Hopefully pam_mount can also be included in the
> 'auth-client-config' work.
auth-client-config deals with *only* the nsswitch.conf and pam auth,
account, password and session files. If you have a configuration for
these that is more or less standard for authenticating with AD, please
submit and they can be added as profiles for auth-client-config.
We don't have the whole infrastructure in place, as Rick said, but his
ldap-auth-client package will most likely be the basis for other
packages like 'kerberos-auth-client' and 'ad-auth-client' (if AD doesn't
easily fit in somewhere else). I'm hopeful that since there seems to be
so much interest in network authentication, more than just ldap
authentication will make it into gutsy-- but that is not for me to
decide.
Jamie
More information about the ubuntu-server
mailing list