SAMBA
The extremely popular open source implementation of the SMB/CIFS networking protocol provide universal file and print services. Has become the integration solution for providing a single-sign-on capability on networks in which both Linux and Windows operate.
Integrating with Windows
Samba allows integration with Windows environment; that is having a network composed of both Linux servers and desktops and Windows machines. Integration can be achieved as a replacement or integration where legacy Windows NT domains are involved. Integration with Active Directory domain can be achieved in a variety of ways including as part of Kerberos infrastructure or using the ubiquitous winbind daemon to join an existing Active Directory domain. In effect Winbind provides a way to translate user IDs and permissions from a Windows format to a Unix.
OpenLDAP
The very potent open source implementation of the LDAP with very advanced features such as overlay for added flexibility and replication for reliability. OpenLDAP can be used to integrate with Active Directory-based Domain on mixed network. Traditionally Active Directory default object schema for storing users credentials would make it incompatible for storing Unix/Linux clients. Subsequently schema extensibility has been offered to enhance integration with Unix-type user ID and group ID. However using OpenLDAP as the an extension of Active Directory credential for Unix/Linux clients provides a very robust and stable platform to authenticate.
Two-way synchronization with 389 Directory Server
Formerly known as the Fedora Directory Server, the 389 Directory Server is a very advanced LDAP compliant solution with multi-master replication capability and a java-based graphical administration tool. The two-way synchronisation feature provided by this easy to use LDAP compliant server to allow mixed Windows and Unix/Linux single-sign-on. This approach basically allows both Active Directory and 389 Directory Server to function in parallel. Windows clients can then authenticate with Active Directory and Unix/Linux can authenticate with the 389 Directory Server.
FreeIPA
FreeIPA is the ultimate open source integrated security information solution leveraging SAMBA, 389 Directory Server, Kerberos, DNS, security certificates etc. By bundling these popular infrastructure integration tools together while offering a single graphical and/or command-line based tool, network administrator now have a powerful open source auditing and compliance management solution for network users.
