[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Centralized user-database: LDAP vs. KerberosV5 vs. AFS

On  0, Raffaele Sandrini <rasa@gmx.ch> wrote:
> Hi
> I try to evaluate wich is THE user database and login system.
> I read many docs and tried it for myself. I ask here for your thoughts about 
> that. First some of mine:
> LDAP: This is deffinitly a cool method. Its very simple and very secure due 
> its high SSL encryption. And through the possibility of NSS_LDAP virtually 
> every application will automatically support that and due the nature of LDAP 
> you are able to store all sort of information about the user in the LDAP 
> tree.

We use LDAP as our single authentication tree for both staff and
students.  It is certainly a Cool Thing.  We use it to authenticate on
Linux systems (PAM) as well as NT (there are good replacements for the
login system on NT that let you use LDAP, we use the Novell one and
lay an NDS tree over it).  It is also the authentication database for
email, calendaring and a few other things.

I don't know about AFS (what is it?)

Tom Cook
Information Technology Services, The University of Adelaide

"Beware of computer programmers that carry screwdrivers."
	- Leonard Brandwein

Get my GPG public key: https://pinky.its.adelaide.edu.au/~tkcook/tom.cook-at-adelaide.edu.au

Attachment: pgpLyv2zRRcsd.pgp
Description: PGP signature

Reply to: