Ideas for best Single Sign-on solution?
I'm currently debating migrating from an NT4 domain to an Active Directory domain or to a Samba domain. I would like ideas regarding this migration and the possibilities, or just people's opinion's and/or experiences.
I know AD is far ahead of Samba, but is it worth the money if all you're using it for is user authentication. Isn't it overcomplicated with LDAP and Kerberos?
The background: the company has around 50 people, 40 in london and 10 in another office abroad, connected via vpn. We have 40~ windows machines and 30+ linux servers plus a drizzle of macs (which aren't really important and don't need central authentication).
Will linux work ok with AD or will it be an uphill hackish struggle that will result in fragile authentication that could break at any time or have any unreliability?
Also, am I gonna get hammered for licensing if I try to connect linux clients to the AD because of CALs?
Talk to me please, people.