On 02/15/2011 03:52 PM, Ari Constancio wrote: > Hi, > > We're about to introduce Active Directory in an environment based on > LDAP (OpenLDAP) for accounts. Password synchronization should be > bidirectional if possible. > I'd like to hear any advice on how folks are integrating AD and LDAP servers.
I'd be more of a mind to transition password services over to AD, and if prudent or required, use OpenLDAP for the account information. Syncing or replicating account information between AD and OpenLDAP might require scripting on one side, the other, or both, but shouldn't be insurmountable. For small shops, or mostly windows shops, I'd consider outsourcing wholesale to AD. -- -- John E. Jasen (jja...@realityfailure.org) -- "Deserve Victory." -- Terry Goodkind, Naked Empire _______________________________________________ Tech mailing list Tech@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
