[geeks] single sign-on, centralized auth
Phil Brutsche
phil at tux.obix.com
Fri Jul 19 12:52:02 CDT 2002
Simeon Johnston wrote:
> This is what we use here. We have a Win2k server doing domain control
> with winbind setup on several samba servers. As well as doing VPN auth
> and soon to do wireless vpn auth thingy too.
> :-)
> We don't use Solaris here though, and the IRIX machine hasn't been setup
> yet.
> Though Linux will use the domain logins (I can login and get a shell
> using my domain user :-)
Slick ain't it :)
> I've never used Solaris but it seems to me that if you can get samba and
> PAM working correctly it would work fine accross all the servers.
Linux will work fine, but making Solaris work (specifically Solaris 8) is
easier said than done.
In my experience the NSS module works fine (ie "getent passwd" and "getent
group" shows all the Windows UIDs and GIDs) but there are big problems
keeping the PAM module from working. I've not tried Solaris 9 yet.
On top of that a local Samba guru says that the winbind functionality has
only been properly tested under Linux :(
Phil
More information about the geeks
mailing list