On Tuesday, 25 בDecember 2007 09:34, Jonathan Ben Avraham wrote: > Hi Linux-IL members, > I am considering setting up a heterogenous work environment with about > 100 high-end Linux work stations, 40 MS Windows, and 10 Mac's. The > underlying common authentication system will likely be LDAP. Would NIS or > Active Directories be more appropriate for this type of environment? > TIA, > > - yba
Well, I wouldn't chose any of the above in the way it is described. I believe that MS AD is the best tool to use for Windows environment, LDAP is the best tool for a Linux environment, and NIS is the best tool in that it is alot simpler for automounting and mount permissions for file servers (no password data here). What I would do is integrate. Configure a MetaDirectory, which will be either the source of data, or one level below the source of data (the source can be a CRM system, a database, whatever). Then, using a Directory sync solution, you can sync data from the meta directory to: 1. LDAP tree 2. AD tree 3. NIS system Each environment will use the system that is best for it, and the data each of these systems will see is the same data (since all changes are done at the top level, of the meta directory). This will ensure that all systems work with what they are best suited for on one hand, and that the data all see is the same in terms of permissions, authentication parameters, etc on the other hand. This however requires some integration, and is definetly for the larger operations. However, it is very scalable, and once implemented allows for tremendous flexibility and ability to add more connected systems on very different environments. If you are interested in this, e-mail me in private to [EMAIL PROTECTED] --Ariel -- Ariel Biener e-mail: [EMAIL PROTECTED] PGP: http://www.tau.ac.il/~ariel/pgp.html ================================================================To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
