LinuxQuestions.org
Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-10-2014, 09:06 AM   #1
linuxopen
LQ Newbie
 
Registered: Mar 2014
Posts: 3

Rep: Reputation: Disabled
Opensource AD replacement


I got a new project in school in which i need to create an open source "Active directory". I have searched the internet for information about this but it seems like there arent any services which are the same as AD. The best replacement seems to be "Samba4".

I was wondering if anyone implemented a replacement themself and which services you have used.
 
Old 03-10-2014, 09:07 AM   #2
pan64
LQ Guru
 
Registered: Mar 2012
Location: Hungary
Distribution: debian/ubuntu/suse ...
Posts: 9,570

Rep: Reputation: 2811Reputation: 2811Reputation: 2811Reputation: 2811Reputation: 2811Reputation: 2811Reputation: 2811Reputation: 2811Reputation: 2811Reputation: 2811Reputation: 2811
You are right, the best replacement is samba4. I do not think anyone can implement it easily.
 
1 members found this post helpful.
Old 03-10-2014, 09:48 AM   #3
linuxopen
LQ Newbie
 
Registered: Mar 2014
Posts: 3

Original Poster
Rep: Reputation: Disabled
Thanks for the fast reply

Any idea if a Linux distribution with Samba4 installed could suffice for being a primary domain controller within an organisation?
 
Old 03-10-2014, 09:54 AM   #4
Ser Olmy
Senior Member
 
Registered: Jan 2012
Distribution: Slackware
Posts: 2,458

Rep: Reputation: Disabled
Samba 4 is very much capable of acting as an Active Directory domain controller. The choice of Linux distribution is of little consequence, as long as it offers a reasonably recent version of Samba. And if it doesn't, you can always install from source.

(BTW, the "PDC" designation was deprecated in late 1999 with the release of Windows 2000 and Active Directory. A "Primary Domain Controller" used to be the main domain controller in an old Windows NT-style domain; nowadays it's just one of several FSMO roles held by AD DCs, and can be freely transferred between DCs.)
 
1 members found this post helpful.
Old 03-10-2014, 09:57 AM   #5
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,706

Rep: Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270
you might check Fedora 20.

https://fedoraproject.org/wiki/Features/Samba4

But I'm not sure it is polished enough.
 
1 members found this post helpful.
Old 03-10-2014, 03:43 PM   #6
YellowApple
Member
 
Registered: Mar 2013
Location: Truckee, California, United States
Distribution: Slackware, OpenBSD, openSUSE, Android
Posts: 93

Rep: Reputation: 35
FreeIPA is Red Hat's attempt to outright replace AD, but (at least as far as I can tell) it has quite a ways to go before it's production-ready.

Meanwhile, you can go the route others suggested (Samba4 domain controllers), or you could go the hard way and set up LDAP, Kerberos, and DNS (the three major components of AD) independently.
 
1 members found this post helpful.
Old 03-10-2014, 04:14 PM   #7
jpollard
Senior Member
 
Registered: Dec 2012
Location: Washington DC area
Distribution: Fedora, CentOS, Slackware
Posts: 4,706

Rep: Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270Reputation: 1270
Quote:
Originally Posted by YellowApple View Post
FreeIPA is Red Hat's attempt to outright replace AD, but (at least as far as I can tell) it has quite a ways to go before it's production-ready.

Meanwhile, you can go the route others suggested (Samba4 domain controllers), or you could go the hard way and set up LDAP, Kerberos, and DNS (the three major components of AD) independently.
Not really - there are some differences in each that are not AD. That is why Samba4 uses the Heimdal Kerberos extensions.

AD uses Kerberos, but modifies the protocol slightly to include authorization in addition to just authentication. Also there are some DNS keys that must also be provided that are not normal. Domain controllers are also DNS servers - but with some extensions.

The advantage of using the Samba 4 implementation is that these extensions are already provided.
 
1 members found this post helpful.
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Looking for an OpenSource replacement for cPanel kitek Linux - Server 4 05-10-2011 03:57 AM
opensource AI? routebee Linux - General 1 12-28-2010 02:27 PM
OpenSource Flashplayer replacement mickeyboa Fedora 5 07-11-2006 11:05 AM
Solaris going OpenSource Megamieuwsel General 1 11-16-2004 10:11 AM
how open is opensource? roofy Linux - General 6 05-20-2003 10:23 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 04:35 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration