Talwar, Puneet (NIH/NIAID)
2005-Jul-07 16:28 UTC
RE: [Fedora-directory-users] Fedora Dir services working with AD env.
Well I would like to know if can setup Fedora Dir Services on my RHEL v4 to authenticate my users against the AD env. to implement single sign on (SSO)? -----Original Message----- From: David Boreham [mailto:david_list@boreham.org] Sent: Thursday, July 07, 2005 12:20 PM To: General discussion list for the Fedora Directory server project. Subject: Re: [Fedora-directory-users] Fedora Dir services working with AD env. Talwar, Puneet (NIH/NIAID) wrote:> I would like to know if anybody has gotten Fedora Dir Services working > with AD environment. >Could you be more specific about what kind of interoperability with AD you''re looking for ? -- Fedora-directory-users mailing list Fedora-directory-users@redhat.com https://www.redhat.com/mailman/listinfo/fedora-directory-users
David Boreham
2005-Jul-07 16:33 UTC
Re: [Fedora-directory-users] Fedora Dir services working with AD env.
Talwar, Puneet (NIH/NIAID) wrote:>Well I would like to know if can setup Fedora Dir Services on my RHEL v4 to >authenticate my users against the AD env. to implement single sign on (SSO)? > >You can sync your AD users and their passwords with FDS. This means that using the same username and password, a user can authenticate against either AD or FDS (or applications the users themselves use may delegate authentication to either LDAP service). Is that what you''re looking to do ? It''s possible that you want to proxy LDAP BIND operations submitted to FDS back to your AD service. Not sure if that makes sense because you could simply have the applications use AD directly. Anyway, it might be possible to use kerberos to delegate auth from FDS to AD but I don''t think anyone has tried it (partly because it doesn''t seem too useful).