best single sign on authentication practices

[stevenriz]

Hello, I have inherited somewhat of a problem here. We have a group of about 10 redhat systems, mostly identical running winbind for windows authentication. There is a common mount from an 11th system where all the user files are located. Apparently and occasionally, the winbind begins to take up most or all of the CPU and needs to be killed. This happens on most of the servers at various times. They are all RHEL 4.0 U4.

Although I haven't seen this first hand yet I am wondering what you all think to be the best way to athenticate users of this size linux network. I am asking becuase we will be adding to this group of 10 servers by an additional 20. Want to do it right the first, I mean the second time.

Winbind?
NIS?
LDAP?
Windows?

Thanks!
Steve

 

[QatQat]

I am assuming that the windoz boxes need a Active Directory kind of setup. I think that a good Samba + ADS and LDAP is probably the best solution for you.

Not the easiest setup, actually rather challenging but somehow rewarding when you can get windoz boxes to behave well in a unix network.

QatQat


If I could have sex each time I reboot my server, I would definitely prefer Windoz over Linux!