[ILUG] authenticate ldap multiple remote active directory sites
jez at jinsky.com
Wed Feb 7 01:08:03 GMT 2007
On Tue, Feb 06, 2007 at 11:26:02AM +0000, Pete McEvoy wrote:
> On Tue, Feb 06, 2007 at 10:03:13AM +0000, Nick Murtagh wrote:
> > Pete McEvoy wrote:
> > >I'm currently scoping a job where a requirement may be to get a box in a
> > >datacentre to authenticate users against active directory at different
> > >sites, these sites would be windows networks behind a firewall on the
> > >end of a dsl line.
> > You probably want to authenticate against a replica at each local
> > site... LDAP can do replication I think but I have no experience of it.
> > The master would be in the datacentre.
> Thanks for replying, that does indeed sound like a more sensible way of
> doing things.
Eh, this all sounds like a security nightmare waiting to happen. Perhaps
you should fill in a couple more details:
1. Who are these other networks? Are you all just one big happy
organization, or are they clients of yours, or what?
2. What kind of access will this Rails application offer: will it be
accessible from the Internet or just over a VPN?
You can expect to receive more questions based upon your answers to
More information about the ILUG