Mag Gam on 30 Dec 2008 11:07:23 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] migrating to AD user with Likewise Open

To be on topic, I too have a very similar question

Presently, at my company we use AD for all authentication and as an
application developer my  biggest challenge is to integrate
authentication into our apps. The authentication team simply does not
answer or understand my question. Of course, there is a possibility I
am asking it wrong :-)

As an alternative, we created a database with usernames and passwords
and all of our applications use this db. We are in our own
island...which is not good IMO

I am no expert in AD whatsoever, but if I know my username, password,
and domain is there a library (C/C++/Java/Perl) I can use to test my

For example:

user = < input >
password = < input >
domain = company.domain

connect to AD server.
access domain
Check if user exists
Try to authentication by using user and password on domain. Return 0 || 1

Is this possible to do? What other information would I need to
integrate AD into my app?


On Tue, Dec 30, 2008 at 1:22 PM, Stephen Nichols
<> wrote:
> I used to add my Fedora boxes to Active Directory once upon a time.  The
> article that got me going is at
> <>.  The security
> tools used don't exist in Debian based distributions though.  I didn't know
> there were standalone OSS packages that could do this.  I'll have to look
> into Likewise Open and any other apps that fill the gap.  I tried to join
> Ubuntu to a domain on my own but I was never successful.
> -----Original Message-----
> From:
> [] On Behalf Of Art Alexion
> Sent: Tuesday, December 30, 2008 10:03 AM
> To:
> Subject: [PLUG] migrating to AD user with Likewise Open
> I have started playing with Likewise Open for joining Linux (and Mac)
> computers to MS Active Directory domains.  Seems painless and easy, and
> works well with a new user.  The problem is how to take a local user and use
> those settings, preferably even that $HOME, for his or her AD user.
> I figured I could simply copy the .configurations from the local $HOME, and
> then maybe create a group with the local-domain user pair and make sure the
> group gets owner permissions.  Except I am thinking that that, too, would be
> problematic, because once you log on as a domain user, the groups you see
> are the domain groups, not the local groups.
> Ultimately, I guess, I can copy (move), chown, and forget the local user.
> I found this
> (
> which shows how to migrate from NIS, but not from a local user.
> Any suggestions?
> ___________________________________________________________________________
> Philadelphia Linux Users Group         --
> Announcements -
> General Discussion  --
Philadelphia Linux Users Group         --
Announcements -
General Discussion  --