sig:sysadmin:projects:project4
Differences
This shows you the differences between two versions of the page.
|
sig:sysadmin:projects:project4 [2014/12/19 17:15] walter created |
sig:sysadmin:projects:project4 [2021/05/02 21:36] |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== Project Member(s) ====== | ||
| - | * N/A | ||
| - | |||
| - | ====== Purpose ====== | ||
| - | |||
| - | Like many orgs, the ACM's Active Directory forest is completely internal and is not reachable from the public internet. However, some of this information is safe to expose, at least non-anonymously, via a publically facing proxy. OpenLDAP has a history of being used as a basic public proxy for an Active Directory forest by exposing a limited subset of data mapped between the two systems (the schemas used do not need to match, just map). This can also be done securely since non-SSL traffic can be disabled and the public SSL certificate for the main hostname can be used to secure the connection without the requirement of some workaround using a custom CA. | ||
| - | |||
| - | ====== Resources====== | ||
| - | |||
| - | [[https://wiki.samba.org/index.php/Samba_AD_DC_HOWTO]] | ||
| - | |||
| - | [[https://wiki.samba.org/index.php/Authenticating_other_services_against_AD#openLDAP_proxy_to_AD]] | ||
| - | |||
| - | [[http://en.wikipedia.org/wiki/Lightweight_Directory_Access_Protocol]] | ||
| - | |||
| - | ====== Progress ====== | ||
| - | |||
| - | *Fill in when updates to document* | ||
sig/sysadmin/projects/project4.txt ยท Last modified: 2021/05/02 21:36 (external edit)
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Noncommercial-Share Alike 4.0 International
