I'd advise against Likewise, having tested it myself. I was never able to get it to work properly; it would disconnect after the AD cache timed out and not reconnect to the PDC without a restart. Their SMF manifests are not written properly for dependencies, so you have to disable/enable daemons in a certain order to get it restarted.
There is an extension for Sun Directory Server that allows you to sync to AD without schema changes, but I never got it installed and working since it's intended for Sun DS 6.2 and we are on 7. My next attempt was to be Kerberos, but I haven't had enough cycles to work on it. -- This message posted from opensolaris.org _______________________________________________ opensolaris-discuss mailing list opensolaris-discuss@opensolaris.org
