Open main menu
Home
Random
Recent changes
Special pages
Community portal
Preferences
About Wikipedia
Disclaimers
Incubator escapee wiki
Search
User menu
Talk
Dark mode
Contributions
Create account
Log in
Editing
Active Directory
(section)
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
==Unix integration== Varying levels of interoperability with Active Directory can be achieved on most [[Unix-like]] operating systems (including [[Unix]], [[Linux]], [[Mac OS X]] or Java and Unix-based programs) through standards-compliant LDAP clients, but these systems usually do not interpret many attributes associated with Windows components, such as [[Group Policy]] and support for one-way trusts. Third parties offer Active Directory integration for Unix-like platforms, including: * ''PowerBroker Identity Services'', formerly ''Likewise'' ([[BeyondTrust]], formerly Likewise Software) β Allows a non-Windows client to join Active Directory<ref name="EMAG">{{cite book |last1=Edge |first1=Charles S. Jr |first2=Zack |last2=Smith |first3=Beau |last3=Hunter |title=Enterprise Mac Administrator's Guide |url=https://archive.org/details/enterprisemacadm0000edge |url-access=registration |year=2009 |publisher=[[Apress]] |location=New York City |isbn=978-1-4302-2443-3 |chapter = Chapter 3: Active Directory}}</ref> * ''ADmitMac'' ([[Thursby Software Systems]])<ref name="EMAG" /> * ''[[Samba (software)|Samba]]'' ([[free software]] under [[GPLv3]]) β Can act as a fully functional Active Directory<ref>{{cite web|url=https://www.samba.org/samba/history/samba-4.0.0.html|title=Samba 4.0.0 Available for Download |access-date=9 August 2016|work=SambaPeople|publisher=SAMBA Project| archive-url= https://web.archive.org/web/20101115160233/http://wiki.samba.org/index.php/Samba4/Releases/4.0.0alpha13| archive-date= 15 November 2010 | url-status= live}}</ref><ref name="Samba Plugfest Report">{{cite web | url=http://people.samba.org/people/2009/10/05#drs-success | title=The great DRS success! | access-date=2 November 2009 | date=5 October 2009 | work=SambaPeople | publisher=SAMBA Project | archive-url=https://web.archive.org/web/20091013094528/http://people.samba.org/people/2009/10/05#drs-success | archive-date=13 October 2009 }}</ref> The schema additions shipped with [[Windows Server 2003 R2]] include attributes that map closely enough to RFC 2307 to be generally usable. The reference implementation of RFC 2307, nss_ldap and pam_ldap provided by PADL.com, support these attributes directly. The default schema for group membership complies with RFC 2307bis (proposed).<ref>{{cite web|url=http://www.padl.com/~lukeh/rfc2307bis.txt |title=RFC 2307bis |access-date=20 November 2011 |archive-url=https://web.archive.org/web/20110927182939/http://www.padl.com/~lukeh/rfc2307bis.txt |archive-date=27 September 2011 }}</ref> Windows Server 2003 R2 includes a [[Microsoft Management Console]] snap-in that creates and edits the attributes. An alternative option is to use another directory service as non-Windows clients authenticate to this while Windows Clients authenticate to Active Directory. Non-Windows clients include [[389 Directory Server]] (formerly Fedora Directory Server, FDS), ViewDS v7.2 [[XML Enabled Directory]], and Sun Microsystems [[Sun Java System Directory Server]]. The latter two are both able to perform two-way synchronization with Active Directory and thus provide a "deflected" integration. Another option is to use [[OpenLDAP]] with its ''translucent'' overlay, which can extend entries in any remote LDAP server with additional attributes stored in a local database. Clients pointed at the local database see entries containing both the remote and local attributes, while the remote database remains completely untouched.{{Citation needed|date=March 2011}} Administration (querying, modifying, and monitoring) of Active Directory can be achieved via many scripting languages, including [[PowerShell]], [[VBScript]], [[JavaScript|JScript/JavaScript]], [[Perl]], [[Python (programming language)|Python]], and [[Ruby (programming language)|Ruby]].<ref>{{cite web|title=Active Directory Administration with Windows PowerShell|url=https://technet.microsoft.com/en-us/library/dd378937%28WS.10%29.aspx|publisher=Microsoft|access-date=7 June 2011}}</ref><ref>{{cite web|title=Using Scripts to Search Active Directory|date=26 May 2010 |url=https://technet.microsoft.com/library/ee692830.aspx|publisher=Microsoft|access-date=22 May 2012}}</ref><ref>{{cite web|title=ITAdminTools Perl Scripts Repository|url=http://www.itadmintools.com/2011/09/itadmintools-perl-script-repository.html|publisher=ITAdminTools.com|access-date=22 May 2012}}</ref><ref>{{cite web|title=Win32::OLE|url=https://metacpan.org/module/Win32::OLE|publisher=Perl Open-Source Community|access-date=22 May 2012}}</ref> Free and non-free Active Directory administration tools can help to simplify and possibly automate Active Directory management tasks. Since October 2017 Amazon [[Amazon Web Services|AWS]] offers integration with Microsoft Active Directory.<ref>{{Cite web|url=https://aws.amazon.com/blogs/security/introducing-aws-directory-service-for-microsoft-active-directory-standard-edition/|title=Introducing AWS Directory Service for Microsoft Active Directory (Standard Edition)|date=24 October 2017|website=Amazon Web Services}}</ref>
Edit summary
(Briefly describe your changes)
By publishing changes, you agree to the
Terms of Use
, and you irrevocably agree to release your contribution under the
CC BY-SA 4.0 License
and the
GFDL
. You agree that a hyperlink or URL is sufficient attribution under the Creative Commons license.
Cancel
Editing help
(opens in new window)