[NTLUG:Discuss] Easy openldap

[Richard]

On 12/2/2010 1:31 AM, Leroy Tennison wrote:
> On 12/01/2010 02:47 AM, Ralph Green wrote:
>> Howdy,
>>    This is probably a ridiculous request, but I am an optimist, so I'll
>> try.  I want to set up openldap to handle a small domain. <snip>
>>   Can openldap serve as the AD for Windows 2003
>> and Linux, or is that just crazy talk?
>>
> It's probably "do-able" because you can define your own schema (data 
> dictionary) in openldap but, based on my experience, it's going to be 
> a steep learning curve.

Steep learning curve indeed.  I took notes when I was trying to work on 
it.  There is something about taking notes on your first run through 
that helps with being able to explain those 'gotcha' points to others.  
The thing is, finishing the documentation after the light bulb goes off 
gets difficult. At any rate, I did keep notes and did my best to make it 
instructional since I found so many missing pieces to the puzzle.

Ralph,  visit *http://tinyurl.com/2fgkjc* and poke around on that pmwiki 
site.    I called it an ldapwhyto since it was a HowTo that explained 
why.  It's based on the Slackware distro.  This allows you to see the 
pieces of the puzzle come together rather than relying on automation 
somewhere else.

I still need to brush up on LDAP and ACLs, and I need to get this 
working where two samba servers across a WAN link each hold their own 
part of the LDAP tree and replicate back to the other server for 
redundancy..

Samba doesn't exactly have Active Directory yet, but you can use the old 
NT PDC style domains just fine.

I so need to brush up on this and give a presentation.