[389-users] Using Active Directory's SUA/SFU extensions in a Directory Server <==> AD setup
Kenneth Holter
kenneho.ndu at gmail.com
Thu Jan 14 15:43:17 UTC 2010
Hi.
We wish to sync our Red Hat Directory Server (RHDS) with Active Directory
(AD), and would like our linux boxes to make use the groups defined on AD.
Our current plan have been to recreate the AD groups as netgroups on the
RHDS side, but recently I've been told that it is possible use the AD groups
directly - only modifications necessary would be to set some attribute
mappings in the nss_ldap module, and enable/configure the Subsystem for
UNIX-based Applications (SUA) on the AD side.
Has anyone here implemented this setup?
Is is so that SUA is simply a schema extension to hold unix attributes, so
essentially what happens when enabling SUA is that one on the AD side is
able to define posix attributes, which in turn is synced over to RHDS by the
Windows Sync plugin?
Best regards,
Kenneth Holter
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20100114/fc51ce13/attachment.html>
More information about the 389-users
mailing list