On Fri, Apr 27, 2012 at 19:42, Atom Powers <[email protected]> wrote:
> > d. use of specific encryption types if I want to consider a trust > > with an AD realm some time down the road > > Last time I looked at this is wasn't possible. (Which is the reason I > I believe this is possible, just not recommended. Note that Kerberos + OpenLDAP is not an AD substitute; there's a lot more going on with AD than just those. There's a reason Samba4 is big and taking a long time to reach production state (and using a fork of heimdal instead of the main code base; there are actual differences to the protocol if you are trying to do full AD). There are folks in #kerberos on FreeNode who know the details of getting Kerberos and AD to talk to each other. -- brandon s allbery [email protected] wandering unix systems administrator (available) (412) 475-9364 vm/sms
_______________________________________________ Tech mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
