On Tue, Feb 06, 2007 at 10:03:13AM +0000, Nick Murtagh wrote:
> Pete McEvoy wrote:
> >I'm currently scoping a job where a requirement may be to get a box in a
> >datacentre to authenticate users against active directory at different
> >sites, these sites would be windows networks behind a firewall on the
> >end of a dsl line.
>> You probably want to authenticate against a replica at each local
> site... LDAP can do replication I think but I have no experience of it.
> The master would be in the datacentre.
>> That way if your ADSL line goes down or the master server crashes you
> can still login. Also, the only traffic you have to secure between the
> sites and the datacentre would be the replication updates, and not the
> authentication requests. It'll also be much master to authenticate and
> more scalable. Also a lot more work...
Thanks for replying, that does indeed sound like a more sensible way of
doing things.
> If you were asking a "can windows authenticate against LDAP" type
> question... no idea!
No, it will be a debian box running (probably) a rails app that needs to
authenticate a large number of users. What you suggested sounds ideal.
Just need to figure out how to actually do it now..
Thanks again.
--
Pete
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
