Title: RE: [ActiveDir] Ocra
I have
not done Solaris->AD authentication specifically, but other *nixes can be
configured to authenticate to AD via Kerberos v5. Like everyting in the
Unix world, it's a-la-carte, so it's a separate module you would install in
addition to the Sun LDAP package.
about Ethereal.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Eric
FleischmanSent: Wednesday, May
04, 2005 3:01 PMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Solaris
authentication
I know I said it
earlier, but I’ll say it again here…..Solaris 9/10 have (I’m to
To get all the information you should
be using a spanning (not spamming) port. That will show you all the information
going through the switch, not just what ethereal can collect. If there
is no spanning port you may want to break into the switch and tell it to
send all traffic to your port as wel
your replies about
Ethereal.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Eric Fleischman
Sent: Wednesday, May 04, 2005 3:01
PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Solaris
authentication
I know I said it earlier, but I’ll
say it again here
On 5/4/05, joe <[EMAIL PROTECTED]> wrote:
> Switched networks help secure the network a little better, it locks down who
> has full access to see all traffic. However if you sniff from the server
> side, you tend to get all sorts of goodies because lots of people are
> connecting to them.
Althou
Subject: RE: [ActiveDir] Solaris
authentication
Ignore this. I just did a little FAQ
reading, and it looks like this is by design on a switched network.
___
Getting more used to this Ethereal thing
now. Found a cool
y 04, 2005 2:05 PMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Solaris
authentication
Getting more used to
this Ethereal thing now. Found a cool little article that helped out a bit. Now
I am trying to figure out why I can’t sniff the packets of another machine on
the same subnet a
@mail.activedir.orgSubject: RE: [ActiveDir] Solaris
authentication
Getting more used to
this Ethereal thing now. Found a cool little article that helped out a bit. Now
I am trying to figure out why I can’t sniff the packets of another machine on
the same subnet as me (I thought that was the point of promiscuous mode
goodies because lots of people are
connecting to them.
joe
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Douglas M.
LongSent: Wednesday, May 04, 2005 2:05 PMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Solaris
authentication
Getting more used to
this
ulnickSent: Wednesday, May 04, 2005 9:21 AMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Solaris
authentication
Two things:
"As far as REQs Al…….
1. FREE 2. Add
little complexity"
These
two are sometimes [1] not complimentary to one another. Consider the co
8:43 AMTo:
ActiveDir@mail.activedir.orgSubject: Re: [ActiveDir] Solaris
authentication
Douglas
You have to configure your switch so that the port that
your monitorising box is connected to receives all the packets that
interest you. In the Alcatel switch we have this is called mirroring. You
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Al Mulnick
Sent: Wednesday, May 04, 2005 9:21
AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Solaris
authentication
Two things:
"As far as REQs Al……. 1.
FREE 2. Add
little complexity"
Douglas M. Long
Sent: Wednesday, May 04, 2005
11:20 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Solaris
authentication
I totally agree with the time cost of the
issue, and am at least looking into the cost before I throw the idea out the
window. And I also agree with the ldap bind
8:43 AMTo:
ActiveDir@mail.activedir.orgSubject: Re: [ActiveDir] Solaris
authentication
Douglas
You have to configure your switch so that the port that
your monitorising box is connected to receives all the packets that
interest you. In the Alcatel switch we have this is called mirroring. You
ulnickSent: Wednesday, May 04, 2005 9:21 AMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Solaris
authentication
Two things:
"As far as REQs Al…….
1. FREE 2. Add
little complexity"
These
two are sometimes [1] not complimentary to one another. Consider the co
all
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Al Mulnick
Sent: Wednesday, May 04, 2005 9:21
AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Solaris
authentication
Two things:
"As far as REQs Al……. 1.
FREE 2. Add
little compl
[mailto:[EMAIL PROTECTED] On Behalf Of Douglas M.
LongSent: Tuesday, May 03, 2005 10:30 AMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Solaris
authentication
I may sounds like an
idiot, but you guys are always talking about tracing stuff on the network to see
if it is in plain text,
Douglas
You have to configure your switch so that the port that your monitorising box is connected to receives all the packets that interest you. In the Alcatel switch we have this is called mirroring. You probably will need to do this before you can start sniffing as otherwise you will only see
that I looked that was worth doing.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Al Mulnick
Sent: Tuesday, May 03, 2005 7:11 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Solaris
authentication
The directions you reference on the sunone
site make
Title: RE: [ActiveDir] Ocra
That primer says that it is using LDAP Auth[1]. LDAP
is not an Auth protocol as much as some would like it to force it to try and be.
It is just a guess but I expect, this, which is the usual in the *nix world, is
a simple LDAP bind that is redirected. They are not
work before.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Olegario,
AlanSent: Tuesday, May 03, 2005 7:52 AMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Solaris
authentication
In a previous job, I’ve
been able to configure users on our Solaris/Linux box
kerberos pam active directory’, you’ll find a lot of documents on
how to configure this setup.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Al Mulnick
Sent: Tuesday, May 03, 2005 7:11
AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Solaris
authentication
MTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Solaris
authentication
I know someone doing
auth from Solaris 9 and 10 against AD via Kerberos in production. I don’t know
how they are populating /etc/passwd but can find out.
I’ve never used NIS
against AD so couldn’t say what’s going on here.
~Eric
Title: RE: [ActiveDir] Ocra
I know someone doing auth from Solaris 9
and 10 against AD via Kerberos in production. I don’t know how they are
populating /etc/passwd but can find out.
I’ve never used NIS against AD so
couldn’t say what’s going on here.
~Eric
From:
[EMAIL P
24 matches
Mail list logo
