On Wed, 14 Apr 2010, Chris Wilson wrote: > My advice would be that, unless you need directory features (e.g. > distributed groups), try implementing Kerberos instead. It allows you to > do single-sign-on (saves reentering password all the time) and it's > easier to add LDAP on top of Kerberos than the other way around (users > don't have to reset their passwords).
For more information about how to do that, you could start here: http://www.aput.net/~jheiss/krbldap/howto.html and just go as far as "Kerberos Wrap-up" to start with, leaving the LDAP part for later. Cheers, Chris. -- Aptivate | http://www.aptivate.org | Phone: +44 1223 760887 The Humanitarian Centre, Fenner's, Gresham Road, Cambridge CB1 2ES Aptivate is a not-for-profit company registered in England and Wales with company number 04980791. _______________________________________________ LUG mailing list [email protected] http://kym.net/mailman/listinfo/lug LUG is generously hosted by INFOCOM http://www.infocom.co.ug/ All Archives can be found at http://www.mail-archive.com/[email protected]/ The above comments and data are owned by whoever posted them (including attachments if any). The List's Host is not responsible for them in any way. ---------------------------------------
