Pretty much right........and is not truly X.500 compliant...This AD. It makes me nervous when one refers to it as LDAP...heh. Do a low level trace when running: ldapsearch .. Problem is AD has to be dealt with until Microsoft dies! Becomes Novell. And it will someday.... Anyway.... The LDAP with CentOS is robust enough when built up as Master Master // rep. rep. Lots of thing get missed.... "Paris in the the Spring" Did you catch that extra word there.....too much wrapper...Welcome to AD. Wizard of Hass! Rarely wrong; usually right.... On Jan 29, 2014 3:00 PM, "John R Pierce" <pierce@xxxxxxxxxxxx> wrote: > On 1/29/2014 2:24 PM, Joseph L. Casale wrote: > > No, the other way around. Microsoft Active Directory implements an > > LDAP like directory accessible interface for its own directory. > > > > Calling Active Directory "LDAP" is like calling vim `echo "xx" > yy`. If > you > > are unaware of all the moving parts under Active Directory, it might > prove > > very informative to explore it. > > > > Credit where credit is due ... > > AD *is* a modified/extended LDAP+Kerberos based system, it just adds a > ton more proprietary stuff around it to manage Windows workstations, the > whole Group Policy Object stuff etc etc. Thats all implemented via > LDAP extensions. > > > > -- > john r pierce 37N 122W > somewhere on the middle of the left coast > > _______________________________________________ > CentOS mailing list > CentOS@xxxxxxxxxx > http://lists.centos.org/mailman/listinfo/centos > _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos