[Fedora-directory-users] Business Case: Advantage Opensource Directory VS Active Directory

cobra at cobradevil.org cobra at cobradevil.org
Mon Aug 25 17:32:36 UTC 2008


Thanx for your answers.

I am going to try to get this project going.

just scared when i think off the following scenario's!

When we get the next few years more then 300 linux servers and about 3000
workstations and we put those all in active directory and microsoft
changes their license so you pay per entry then you feel very screwed!!!!

Or lets say you have everything in AD and a f*cked up virus will delete
your AD then your whole infrastructure is down (including DNS NTP LDAP
USER AUTHENTICATION and AUTHORIZATION) and i think for more then 70000
users that will be a real disaster!!! How quick can you recover that?

With an OSS directory server (we have some real experience like kerberos
trusts and  openldap/fds ) i think we will be in better control then with
AD, but that is based on my feelings so not really interesting of course!

Wish me all good luck and i hope i can learn from this project so i can
help other people with these questions!!

I will ask my bosses to get this project (directory services for OSS
infrastructure) so open that i can release docs and stuff out in the wild
for reference.

With kind regards,

William van de Velde


> in a windows only network, sure. have fun getting anything else to
> authenticate to it properly though.  I dont think you even need to know a
> lot about ldap to get it going with fds, but its still a useful thing to
> know if you are a linux guy, AD is also ldap.  I'd really doubt that it
> could ever be faster since AD also adds DNS, kerberos, DHCP, NTP all into
> it.
>
>
>
>
> On Mon, Aug 25, 2008 at 5:30 AM, Merle Reine <merle.reine at gmail.com>
> wrote:
>
>> Ease of use, speed, dependency.  I love mysql, php, apache, linux but
>> LDAP
>> is just way too confusing and need to many hands on to manage.  AD just
>> works, was a breeze to setup (i setup exchange server, ADAM in 2 days
>> serving 6,000 users) and I had 0 previous experience with either as I am
>> a
>> linux guy.  It has worked flawlessly with not a single thing done to it
>> since being setup.  I don't like the licensing fees either but it is
>> worth
>> the money to not have to do any management on a daily basis and I mean 0
>> seconds of my time or my admins in the last 3 months.
>>
>>
>> Merle Reine
>> CTO
>> Vanguard Industries, Inc.
>>
>> Email Address: echo zreyr.ervar at tznvy.pbz | perl -pe 'y/a-z/n-za-m/'
>>
>>
>> On Sun, Aug 24, 2008 at 2:28 AM, solarflow99
>> <solarflow99 at gmail.com>wrote:
>>
>>> I've used them both too, and I never noticed any real advantage with
>>> AD.
>>> In fact, FDS would do everything just like you said, and I wasnt forced
>>> into
>>> vendor lock-in to do it.  What were your main drawbacks with LDAP?
>>>
>>>
>>>
>>> On Sun, Aug 24, 2008 at 3:06 AM, Merle Reine
>>> <merle.reine at gmail.com>wrote:
>>>
>>>> Been using Fedora Directory Server since its inception and up until
>>>> recently, I would have recommended it above all others.  I am a Linux
>>>> guru,
>>>> windows hater and favor open source over any proprietary product.
>>>> That
>>>> being said,  I recently switched to a new company and they happen to
>>>> be all
>>>> XP and 2003 server along with exchange.
>>>>
>>>> Having had the opportunity to work now with both FDS and Active
>>>> Directory,  I can tell you from first hand experience, Active
>>>> Directory wins
>>>> hands down.  It was easy to setup, easy to replicate, support 6,000
>>>> users
>>>> currently at my office and is easily running on a dual core system
>>>> while
>>>> hardly using any resources.
>>>>
>>>> I am no lover of Microsoft or any of its products but switching to
>>>> ADAM
>>>> was the best move i could have made.  There is no comparison on ease
>>>> of
>>>> setup, ease of management, stability.  ADAM wins hands down as much as
>>>> I
>>>> hate to say it, its true.
>>>>
>>>> Just one person's first hand experience...
>>>>
>>>>
>>>> Merle Reine
>>>> CTO
>>>> Vanguard Industries, Inc.
>>>>
>>>> Email Address: echo zreyr.ervar at tznvy.pbz | perl -pe 'y/a-z/n-za-m/'
>>>>
>>>>
>>>> On Sat, Aug 23, 2008 at 12:07 PM, <cobra at cobradevil.org> wrote:
>>>>
>>>>> Hello Andrey and Ben,
>>>>>
>>>>> Thanx for your answers!
>>>>>
>>>>> The document realy explains the differences between both directory's!
>>>>> I'm taking it for input for the why question for our project!
>>>>> For the performance we are going to test that!
>>>>>
>>>>> With kind regards,
>>>>>
>>>>> William van de Velde
>>>>>
>>>>>
>>>>> > Bonjour cobra,
>>>>> >
>>>>> > Monday, August 18, 2008, 4:09:22 PM, you wrote:
>>>>> >
>>>>> >
>>>>> >
>>>>> > cco> I have a question why i should use an opensource directory
>>>>> server
>>>>> for
>>>>> > my
>>>>> > cco> opensource activities!
>>>>> >
>>>>> > cco> I work for a large company! 70k users
>>>>> >
>>>>> > cco> We have a large MS Windows based infrastructure win2k3 with
>>>>> winxp
>>>>> > cco> workstations.
>>>>> >
>>>>> > cco> Can someone help me with getting the right arguments so i have
>>>>> a
>>>>> > valid
>>>>> > cco> reason to create an opensource directory server?
>>>>> > You can try this document to begin with (written for a customer by
>>>>> > Symas and HP) : http://www.symas.com/documents/Adam-Eval1-0.pdf
>>>>> >
>>>>> >
>>>>> > Andrey Ivanov
>>>>> > tel +33-(0)1-69-33-99-24
>>>>> > fax +33-(0)1-69-33-99-55
>>>>> >
>>>>> > Direction des Systemes d'Information
>>>>> > Ecole Polytechnique
>>>>> > 91128 Palaiseau CEDEX
>>>>> > France
>>>>> >
>>>>> > --
>>>>> > Fedora-directory-users mailing list
>>>>> > Fedora-directory-users at redhat.com
>>>>> > https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>>> >
>>>>>
>>>>>
>>>>> --
>>>>> Fedora-directory-users mailing list
>>>>> Fedora-directory-users at redhat.com
>>>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>>>
>>>>
>>>>
>>>> --
>>>> Fedora-directory-users mailing list
>>>> Fedora-directory-users at redhat.com
>>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>>
>>>>
>>>
>>> --
>>> Fedora-directory-users mailing list
>>> Fedora-directory-users at redhat.com
>>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>>
>>>
>>
>> --
>> Fedora-directory-users mailing list
>> Fedora-directory-users at redhat.com
>> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>>
>>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>





More information about the 389-users mailing list