Unfinished Business: The One Missing Piece
Subject:   Can't I do it now?
Date:   2003-04-29 13:03:41
From:   anonymous2
I think I'm confused. If I really want to integrate with AD, can't I do it now? Isn't AD really just LDAPv3 (-ish) and Kerberos v5 (-ish)? Can't I just Kerberize my Linux workstations and servers, and use something like NSS_LDAP to use the group/userfield information, and call myself integrated with AD? What pieces can I still not get from AD with this implementation?