I would like to configure OpenLDAP to authenticate against an Active Directory server, but I can't seem to find documentation to configure it the way I need it.
- I need it to work without the Windows Services for UNIX being applied to the Active Directory schema
- I need it to work without the linux server being joined to the domain
- I need it to work without the use of Kerberos
There are several examples I found through searching on Google, but they all require SFU to be applied to your AD schema, and they expect you to join the server to your AD domain using Kerberos. I need it to work without any of those things.
My goal is to get OpenLDAP configured so I can use the Shrubbery Networks version of tac_plus. The Shrubbery Networks version of tac_plus has an IOS bug workaround built-in to it that the pro-bono version doesn't. I wrote a comprehensive guide for configuring the pro-bono version of tac_plus here if anyone is interested.
I would like to set this up on Ubuntu Server 16.04. Any help would be greatly appreciated. If there is another way to accomplish my goal, I'm open to suggestion. If I get it working, I will write up a step-by-step guide to share with the community. The documentation that is currently available is horrible IMO.
No comments:
Post a Comment