[TriLUG] Small Network User Management

Joseph Tate jtate at dragonstrider.com
Wed Apr 23 15:17:27 EDT 2003


If you're going to go the ldap route, I recommend 
directory_administrator for user administration.

Joseph

Chris Hedemark wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
> On Wednesday, April 23, 2003, at 02:15 PM, Joseph Tate wrote:
>
>
>> A lot of people don't trust LDAP for authentication and use Kerberos 
>> instead.
>
>
> Well keep in mind we're talking about two different functions now.  
> There is directory services, and authentication.  LDAP can do both.  
> Kerberos can *only* do authentication.  You can use the directory 
> services aspect of LDAP and authenticate against Kerberos if you want.
>
> For Tarus' purposes, LDAP by itself is probably sufficient.
>
> (TriLUG, BTW, uses the hybrid LDAP/Kerberos configuration for the 
> server farm)
>
>> I've never personally set up NIS,
>
>
> Don't.
>
>>  but apparently, it's very easy on a homogeneous network.
>
>
> Easy?  Easy to hack, you mean.
>
>>  A nightmare on a mixed network.
>
>
> Any network.
>
> ypcat -k passwd.byname
>
> - --
>
> (See mail headers for more info)
> "They that can give up essential liberty to obtain a little temporary 
> safety deserve neither liberty nor safety." - Benjamin Franklin
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.1 (Darwin)
>
> iEYEARECAAYFAj6m4z8ACgkQYPuF4Zq9lvbfbACeKAnVsYVLwp/orUAH8ngn4Wrc
> k0kAoN/UkiLUpOnk49Y3VW86Cv6aV7g2
> =c7Go
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> TriLUG mailing list
>    http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ:
>    http://www.trilug.org/faq/TriLUG-faq.html





More information about the TriLUG mailing list