ldap was Re: [Samba] Samba 4

Jelmer Vernooij jelmer at vernstok.nl
Thu Aug 25 19:44:51 GMT 2005

Hash: SHA1

Farkas Levente wrote:

> Jelmer Vernooij wrote:
>> Farkas Levente wrote:
>>> Gerald (Jerry) Carter wrote:
>>>> Farkas Levente wrote:
>>>>> Gerald (Jerry) Carter wrote:
>>>>>> Samba 4 does include its own LDAP Directory service and
>>>>>> Heimdal based KDC. The reasons for this are to get a
>>>>>> working implementation up and running. Later efforts will
>>>>>> probably focus more on integration of other 3rd party
>>>>>> pieces
>>>>> this means, that samba4 has it's own build in ldap server
>>>>> which is neither OpenLDAP nor Fedora Directory Server?
>>>> Yes. Written from scratch.
>>> this seems to me a bit of waste of resources:-(
>> There is a good reason for this: AD clients expect non-standard
>> behaviour from their LDAP server, so we can't just use OpenLDAP.
>> The Samba4 LDAP server can function pass thru requests to any
>> other standards-compliant LDAP server.
> my question just wouldn't it be possible to include a frontend for
> some kind of ldap and kerberos server? wouldn't it be easier to
> enhance openldap or fedora/netscape directory server? or they are
> so badly implemented ldap servers?

Their "problem" is that they implement a standards-compliant LDAP
server while we need one that violates the standards (but is
compatible with AD). One of the other approaches that could've been
taken is (heavily?) patching OpenLDAP or Netscape, but that probably
wouldn't been more work (and more complicated to install and use!)
then the current approach.



Version: GnuPG v1.4.1 (GNU/Linux)


More information about the samba-technical mailing list