Winbind as Identity Management Connector

648 views

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
648
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
4
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Winbind as Identity Management Connector

  1. 1. Winbind as Identity Management ConnectorFabrizio Manfred Furuholmen
  2. 2. Agenda  Overview  Introduction  Solution  Case study  Results 2 11/05/09
  3. 3. Winbind Winbind unifies UNIX and Windows NT account management by allowing a UNIX box to become a full member of an Windows domain.  Authenticate user credentials by using PAM (SSO)  Resolve user identities and group identities by using the NSS.  Store mappings between Unix UIDs and GIDs and Active Directory security identifiers, or SIDs 3 11/05/09
  4. 4. Windbind vs pam_krb/ldap 4 11/05/09
  5. 5. Goal 5 11/05/09
  6. 6. Solution guide line 6 11/05/09
  7. 7. Solution Components 7 11/05/09
  8. 8. Case study 8 11/05/09
  9. 9. Architecture HQ 9 11/05/09
  10. 10. Architecture Branch 10 11/05/09
  11. 11. Winbind connectors 11 11/05/09
  12. 12. Winbind configuration 1/5 12 11/05/09
  13. 13. Winbind configuration 2/5 13 11/05/09
  14. 14. Winbind configuration 3/5 14 11/05/09
  15. 15. Winbind configuration 4/5 15 11/05/09
  16. 16. Winbind configuration 5/5 16 11/05/09
  17. 17. Write your connector 17 11/05/09
  18. 18. PerformanceApplication Cold cache Warm cache Remote cold Remote warm cache cacheLdap 2X - 2.5X -Ldap+ns 2X 1X 2.5X 1Xcdwinbind - - 4X 1.2Xptserver - - 2X 1XValue for execution time 18 11/05/09
  19. 19. Administration Tasks - Users unixUserPassword: ABCD!efgh12345$67890 uid: test msSFU30Name: test msSFU30NisDomain: beolink uidNumber: 10000 gidNumber: 10000 unixHomeDirectory: /home/test loginShell: /bin/sh 19 11/05/09
  20. 20. Administration Tasks - Groups msSFU30Name: Domain Users msSFU30NisDomain: beolink gidNumber: 10000 20 11/05/09
  21. 21. Administration Tasks - Processes 21 11/05/09
  22. 22. Migration
  23. 23. Archievements 23 11/05/09
  24. 24. Don’t forget.. 24 11/05/09
  25. 25. Results 25 11/05/09
  26. 26. Results 26 11/05/09
  27. 27. WerbungopenAFS Conference Rome September 28-30 http://www.dia.uniroma3.it/~afscon09/ 27 11/05/09
  28. 28. Thank you !Website: www.beolink.orgEmail: manfred@freemails.ch

×