Client for Samba networks
Jeremy Allison
jra at samba.org
Wed Dec 19 13:16:02 GMT 2001
On Wed, Dec 19, 2001 at 12:03:23PM +0100, Osama Dengler wrote:
> I am currently working on a GINA / Windows NT Authentication Package
> that allows NT to authenticate against a LDAP directory. I've it running here
> and can make the sources available if required. The thing works like this:
>
> 1.) In the GINA logon dialog the user can select between standard NTLM
> and LDAP authentication.
>
> 2.) If NTLM auth. is desired, the MSV1_0 authentication package is used.
>
> 3 ) Otherwise a self-written Authentication Package named LdapLsaAp performs
> simple authentication against the given LDAP directory.
>
> Currently I'm working at retrieving the user's information such as Profile path,
> home directory, etc... via LDAP. This should be done in a few days. So far
> it seems to work fine, however this is _not_ a replacement for the SAM routines,
> since usermgr, the ACL code etc. don't use Authentication packages to get their
> information. Perhaps this could be handled in a complete security package.
>
> Since the project is in it's _very_ beginning there is still a lot to do:
> - Test with W2k / XP
> - add a custon security package
> - perhaps replace the whole SAM thing as it is the wors thing MS ever invented
> - review the whole concept under terms of security.
>
> If anybody is interested in this code, please feel free to contact me and I'll provide
> You with the sources. If there is enough interest I can also make it available on
> the web. I'm very interested in people modifying, correcting, testing, etc !
Do you want to make this GPL ? If so, maybe we could host the CVS
tree off samba.org ?
Jeremy.
More information about the samba-technical
mailing list