replicating windows 2000 principals

Luke Howard lukeh at PADL.COM
Thu Feb 6 07:49:47 EST 2003

>Has there been any progress in this area? I need to get something like a
>w2k BDC working, and I'm trying ldap, kerberos and samba. Unfortunately,
>it seems that samba doesn't play this role yet (not even samba 3, which
>I'm using). I also tried the ldap way, but, as some have already said,
>this only gets you the account information, not passwords. Now, is there
>some way to get the passwords via kerberos perhaps?

Probably the path of least resistance is to write a password notification
DLL that forwards password changes to your Kerberos or LDAP server.

Of course, this only works if you can convince users to change their

-- Luke

Luke Howard | PADL Software Pty Ltd |

More information about the Kerberos mailing list