|
Likewise allows Linux and UNIX computers to authenticate and authorize users through Microsoft Active Directory. This provides many benefits:
• A single username and password for users, regardless of whether they are using Microsoft Windows or non-Windows systems.
• Greatly simplified user account management. System administrators can provision users, maintain passwords and deprovision users using a single identity management system.
• Improved security. Likewise extends numerous Active Directory account policies to Linux and UNIX systems. Administrators can configure minimum password lengths, password complexity requirements, password expiration policies and other settings that are applied to both Windows and non-Windows systems.
• Granular authorization supporting separation of duties. Likewise extends Active Directory Group Policy features to Linux and UNIX and provides policy settings to control the provisioning of standardized SUDOer configuration files.
An additional benefit is that Likewise allows Kerberized applications, applications that have been written with support for Kerberos authentication, to exploit its authentication infrastructure and to provide single sign-on (SSO) support.
The rest of this document describes how to configure Kerberized applications to authenticate against Microsoft Active Directory.
|
