Re: [MACS-Dev] Configuring MACS....

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Dear Mr. Santana,

Thank you for your kind reply. I have been unsuccessfully looking for a
Deployment Guide / FAQs pertaining to MACS SSO. I would be thankful if
you could point me to some resources.

As desired, here is a brief description of my actual network:

=D8       I have a mix of NT & Linux based servers, while the clients are
primarily NT based.=20
=D8       The NT servers have been configured in Domain Architecture with
trusts established between certain Domains. Clients are distributed in
these Domains. Some clients use MS Exchange based Mail services, while
others use qmail-OpenLDAP services.=20
=D8       Linux servers host in-house developed J2EE web applications for
workflow.
=D8       Since each user has to login into multiple resources everyday, it
becomes cumbersome for me to administer & support these guys. Therefore,
I have been experimenting with SSO solutions that I could easily deploy
to ease the situation as far as possible.

Servers:=20
=B7       Windows NT:
o       NT domain authentication - MS Exchange 5.5 Server.
o       NT stand-alone server - print server with local user accounts.

=B7       RedHat Linux:
o       RedHat Linux 7.3 OpenLDAP authentication - qmail-ldap server.
o       RedHat Linux 7.3 Samba server - print server with local user
accounts.=20
o       RedHat Linux 7.1 MySQL authentication - some in-house developed
J2EE web applications.

Clients:
=B7       A mixture of Windows NT Workstation 4 & Windows 2000
Professional.

This is how currently I have distributed authentication in my network.
How can MACS be used in this regard to create Single Sign-On environment?

It would be fine if that requires migrating all the user accounts to LDAP
(preferable OpenLDAP on RedHat Linux 7.3).=20

And yes, by Single Sign-On, I mean that logging into one application
automatically logs you into all of them.

I hope this gives a brief idea of my network to you and would help you in
solving my query.

Warm Regards
Anand Sharma.

On Wed, 01 Oct 2003 23:41:22 -0400, "Mario D. Santana"
<md...@me...> said:
>=20
> Anand,
>=20
> Sorry for the delayed response.  My machine was in the shop and it=20
> shouldn't happen again.
>=20
> About your question, the right answer depends on your setup.  For=20
> starters, if you could illuminate the following, it would give me a good=
=20
> idea:
>=20
> Where is the user information stored?  Are they NT users, linux users,=20
> or users in LDAP?  Or some combinations?
>=20
> How portable do you want the user information to be?  For example, if=20
> they are NT users, do you want it to be very easy to switch over to=20
> LDAP, or anything else?
>=20
> Also, what do you mean by Single Sign On?  Do you mean that logging into=
=20
> one application automatically logs you into all of them?  Or do you mean=
=20
> that your user information comes from the same place for all your apps?
>=20
> I really hope we can help you get MACS up and working for you.
>=20
> Cheers!
>=20
> mds
>=20
> Anand Sharma wrote:
> > Hi,
> >=20
> > I am currently evaluating MACS on a test setup.
> > [...]
> > What I am trying to figure out is what next? In my test setup, I am
> > having a web server (Apache on Linux), a mail server (qmail-ldap as well
> > as plain qmail on Linux) and a Windows NT print server.=20
> > [...]
>=20
>=20
>=20
> -------------------------------------------------------
> This sf.net email is sponsored by:ThinkGeek
> Welcome to geek heaven.
> http://thinkgeek.com/sf
> _______________________________________________
> MACS-Dev mailing list
> MAC...@li...
> https://lists.sourceforge.net/lists/listinfo/macs-dev
Best Regards
Anand Sharma.
ana...@sp...

--=20
http://www.fastmail.fm - A fast, anti-spam email service.