Using LDAP for authentication isn't a good idea at all, not to mention adding an administrator username and password to the ldap.conf file. It is better to integrate your Linux client into Active Directory using Kerberos as the Authentication method. Look at Vintela's VAS for an off-the-shelf solution.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/infocus/1563/86#86