enterprise-ubuntu team mailing list archive

[Florian Bieber <florian.bieber@xxxxxxxx>]

Hello,

I am a little bit puzzled. The are solutions for ad integration of linux
clients available, but it is hard for me to find out, what to use when.

For what reason / use-cases the use of win-bind and the kerberos libs (e.g.
described for openSUSE here
http://doc.opensuse.org/documentation/html/openSUSE/opensuse-security/cha.security.ad.html
  )are enough and when/why e.g. PowerBrokerOpen/Likewise-open (
http://www.powerbrokeropen.org/ ) should better be used?

Likewise-open has a package in ubuntu and powerbroker has or will have one,
so one advantage I see is that you receive updates for the packages, if
maintained.

But with which solution problems like
	offline ad login
	single sign on to browser/share ressources
	a pass-through-authentication
	mapping of SID (so that you have on UID/GID on all Systems (local, on
a Share, on a Windows-System etc.)
	get access rights to files (e.g can I create a file on a NFS share so
that another user sees my username instead of SID in the access field?)
	how is the unix user ID generated
is solved on the most sustainable way? What should you use when?

What are the pros and cons for likewise/powerbroker or other solutions?
What else is it good for?

Sorry for so many question, but what are your experiences? what would you
suggest for which case?

Thanks for help in advance!

regards,
Florian