> > I've used and evaluated PowerBroker about five years ago. From a security > perspective, I cannot recommend it. At the shop where I did the eval, we > banned it and forced the group using it to dump it completely.
Can you elaborate on your bad experiences with PBIS (PowerBroker Identity Services, formerly Likewise)? (Unless you meant the main "PowerBroker" product, which is more of a drop-in sudo replacement?) We've been using PBIS for years and it does the job of allowing us to use AD accounts to login to our Linux systems. We manage access primarily via AD groups. We switched from the "Open" version to "Enterprise" last year, but I'm not sure it was worth it (the main thing we were hoping for was improved reporting, but the reporting piece is kinda useless for us right now). But, it's not an AD replacement - just a method of integrating your Unix-like systems with AD.
_______________________________________________ Discuss mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
