[OpenAFS-devel] Re: replacing ptserver for AD integration

Frank Bagehorn FBA@zurich.ibm.com
Thu, 24 Jun 2004 19:01:25 +0200


> Also, regarding part of my original post.. Volker Lendke's ptproxy is a
> fantastic way to replace the ptserver ubik database with AD calls via
> winbind. I've been implementing some of the code myself, hopefully 
Volker
> will approve- its been a while since I've worked in C code rather than
> C++.
Although I'm quite sure that Volker's solution will work nicely (as does 
Samba in general) I would still be in favour of a more general approach. 
So maybe the task is not "replacing ptserver for AD integration" but "
replacing ptserver for LDAP integration". (After all AD is LDAP.) I'm sure 
there are a lot of sites with LDAP user administration. After replacing 
the Kerberos v4 kaserver with a connection to a Kerberos v5 server, 
replacing ptserver with a LDAP lookup to me seems to be the next logical 
step.

Regards
Frank

----------------------------------------------------------------------
Dr. Frank Bagehorn
Manager Workstation & Server ZRL IS
IBM Zurich Research Lab.
Saeumerstr. 4
CH-8803 Rueschlikon 
Switzerland
----------------------------------------------------------------------
SMTP: fba@zurich.ibm.com
Notes: Frank Bagehorn/Zurich/IBM@IBMCH
phone: ++41 (01) 724 83 23  fax: ++41 (01) 724 89 59