[389-users] ADS <==> FedoraDS <==> Linux/Unix Clients?
Ajeet S Raina
ajeetraina at gmail.com
Tue Dec 29 16:41:10 UTC 2009
I have a certain query regarding the following structure:
Code:
Active Directory Server
||
||
Fedora Directory Server <=> Client(Linux | Fedora | Ubuntu | Solaris | HP)
Let me explain you what I want:
1.There is a company Active Directory Server under domain intinfra.com.As of
now there are limited Windows Desktop Machine under that domain.I have few
Linux / Unix Machines which I want to authenticate through ADS(which are
presently not under ADS).Why? Becoz' everytime I need to delete the users
whenver they leave the project.Thats Cumbersome.
So what I want is Setup Fedora DS(Wonder if We can do that without Fedora
DS).Now I can ads join to Fedora DS(I have administrative privileges for
ADS).What I really want to know is:
If I join Fedora DS to ADS then all employee can login to the Linux Machine
through their login credentials. I dont want that to happen.We have 3000
employee in intinfra Domain but We are only 30 Admins. I only want those
30-40 admins to login restrictly.Is it possible to restrict at FedoraDS
level.
2.Say, I joined ADS and fedora DS and say after 30 days one of System Admin
left the company.So his name will be removed from ADS. Is it possible that
ADS and Fedora DS are synchronized in such a way that a user whose name gets
deleted in ADS, gets deleted too from fedora .Do fedora DS has the
capability to synchronize to ADS everytime.
Pls Suggest.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20091229/49eb50fd/attachment.htm>
More information about the Fedora-directory-users
mailing list