||Unfinished Business: The One Missing Piece|
|Subject:||Can't I do it now?|
I think I'm confused. If I really want to integrate with AD, can't I do it now? Isn't AD really just LDAPv3 (-ish) and Kerberos v5 (-ish)? Can't I just Kerberize my Linux workstations and servers, and use something like NSS_LDAP to use the group/userfield information, and call myself integrated with AD? What pieces can I still not get from AD with this implementation?