Designing mid-sized site
nshishir at novell.com
Tue Jun 17 09:20:38 EDT 2003
You don't need to move away from Novell Netware if what you want is
kerberos authentication of eDirectory/LDAP users, against a netware box.
There are ways of managing LDAP/eDirectory names and kerberos principals
in a truly integrated manner, to deliver a "single point of administration".
Karl Naegle(knaegle at novell.com) could give you more information on the
>>>>Lukas Kubin <kubin at opf.slu.cz> 6/11/2003 9:41:21 PM >>>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> We are in the process of converting our university network from Novell
> Netware to Kerberos/OpenAFS/OpenLDAP. The network counts about 7000
> There are 2 geographic locations (schools), both have their own server
> centers. There is a quite fast connection between those 2 nodes.
> Since this is the first time for most of us to design such a network
> Kerberos, we would like to get some advice here.
> 1. How many realms should we create? Is UNIV.ORG enough or shall we
> one for each school or department? Say, UNIV.ORG and SCHOOL1.UNIV.ORG
> 2. How should we create user accounts to distinguish students,
> for each school, similarly to the Novell's "context" concept? At the
> time we need everybody to be able to log-in in any computer throughout
> university network without much effort.
> Thank you.
> - --
> Lukas Kubin
> phone: +420596398285
> email: kubin at opf.slu.cz
> Information centre
> The School of Business Administration in Karvina
> Silesian University in Opava
> Czech Republic
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.1 (GNU/Linux)
> Comment: Made with pgp4pine 1.75-6
> -----END PGP SIGNATURE-----
> Kerberos mailing list Kerberos at mit.edu
More information about the Kerberos