Integrate Active Directory With OpenLDAP

Hi Guys,

I'm new to this community and i just have a basic Linux knowledge especialy Ubuntu+ UbuntuServer. I'm Studying IT its my last year and im working on a thesis called "Windows Vs Linux". I'm trying to setup a virtual company environment in windows and the same in Linux. I want to compare the both... what are the pros and cons from both operating systems, stability, Security, managability, TCO,... . I did some research and stuff but for the Linux part its not easy... So i have a few questions, hopefully I'm getting some response. First of all I'm thinking of using Ubuntuserver LTS as server side OS and for the workclients Mint or ubuntu. Is this a good distro choice ?

My second and i think its the hardest part of setting up a manageable Linux Company environment is an Active directory alternative that offers the same functionality in Linux. Is this possible ? Ok you have like openlDAP and stuff but thats just basic authentication password and shit, but do you have something like GPOS for Linux ?

I'm hoping someone can help me out a bit

Grtz

Hello, I want to deploy some AD-like login and user management. All devices in network use Linux (Debian, 5-10 workstations).
The first idea is to use Samba4 because everyone is talking about how it is AD-compliant, but I think it's not needed, because there's no windows workstations, and it gives additional windows-specific tools and protocols like netbios, etc.

Next thought is, that FreeIPA is good idea, but I don't see it in Debian's repos (only sid).
I could try to install it from sid, but I'm afraid it's not stable and production ready. I see it stable only in RedHat family (centos/fedora).
What is more, freeipa-client is not even in jessie's repo. I heard about sssd as a client in Debian for FreeIPA.

The last idea is to use OpenLDAP. I'm sure it's supported by Debian very well, but I'm afraid of lack of integration with other tools like kerberos, etc. I've got ntp, dns, dhcp, some file sharing, etc. done right now without ldap, so I don't really need all that additional stuff.

Is using Centos/Fedora is only way to have FreeIPA?
Is it possible and supported to use Debian as client of FreeIPA?

Do you have any advice on the best way to do this?

Linux 14.04 server set up following instructions on http://www.havetheknowhow.com

I have been trying to connect to the samba shares from two windows machines. The server is visible but when I try to connect it requests a logon and no matter what I enter it fails. I have been using webmin to set this up and the samba version is 4.1.6-ubuntu.
One note, webmin did not show any samba user groups.

all systems show "WORKGROUP" as the workgroup

Dear All

I need your help.
I want to get a file from windows server using ftp.
Below is the script I have created but the connection is not established:

#!/bin/sh

lcd "directory in linux server"
USER="username of windows server"
PASS="password"

ftp -n "ip of windows server" <<EOF
user $USER $PASS

cd "C:\Users... directory in windows server where file is located"
bin
get test1234.txt

bye

EOF

I hope somebody can help me!
BR,

Changing umask value for files and directories take effect after reload:
/etc/profile
/etc/bashrc
default permission for all users:
-rw-r--r--
above permission is edited to:
-rw-rw-r--
If a specific user in group having only read permission to a file/directory is created before reload,and Linux server reloads, that user gets rw permission to that file/directory. what is the alternative of securing:
/etc/profile
/etc/bashrc
apart from giving the two files access to root user only, and locking out all other users?

Hai to all,

While am trying tp add in ldap database i am getting the following error.

[root@Testing openldap]# ldapadd -x -D "cn=Manager,dc=testdomain3,dc=com" -f yuvraj.ldif -w secret
adding new entry "dc=testdomain3,dc=com"
ldap_add: Undefined attribute type (17)
additional info: employeeNumber: attribute type undefined


[root@Testing openldap]# cat yuvraj.ldif
#Entry 1
dn: dc=testdomain3,dc=com
description: LDAPDB
objectClass: top
employeeNumber: 1000515
nationality: India
fn: yuvraj
sn: singh
sex: Male
age: 31
o: Cricket
ou: Batsman
displayName: singhy
uidNumber: 5155555
cn: yuvraj singh
userPassword: s


Please suggest.
Distro : CentOS 5.5







Thanks in advance..

Hello Guys,

I am an newbie, just started with linux, I have installed centos 6.6 and learning it. But I got stuck in some user controls,

Now In my company I wanted to have an Linux Server and need to do the user authentication and wanted to create domain, But also wanted that my Client OS would be MAC and Windows..

Can anybody Help ??




Please reply here or in my email :- Yerunkar11@gmail.com

Once again thanks Again for reading, really appreciated

hi guys

i was taught that /etc/profile was global for environmental variables and settings...and ~/.profile was specific to the user...

and that bash.rc and ~/.bash.rc was for aliases and functions...i was trying to setup a permanent alias in my profile to a common ssh command and read that it should be going into .profile??? is it really not strict or just a rule of thumb?

I know in the Windows World, servers have roles (IIS, MSSQL) and there are service accounts.

What is the correct way to refer to a server that just runs Apache, a server role too?

And user/groups accounts, like httpd, are those accounts also referred to as service accounts too?

I just want to make sure I'm using the correct terminological.

Hello, does anyone knows a way to run a .bat file in windows that depends on an event in Linux? I already have a free communication between both machines, with puttyGen, but now i have to activate a .bat file in windows when a directory in linux contains files. By crontab it will be watching that directory, and at the moment that a file arrives, the .bat file that is in windows has to fire.

Thanks for the information.