<p><br>
On Feb 15, 2011 3:11 PM, "Fred Jones" <<a href="mailto:fredthejonester@gmail.com">fredthejonester@gmail.com</a>> wrote:<br>
><br>
> > yes, you can setup ad on linux. if you go the ldap route, it relies on an<br>
> > existing windows ad farm. however, if you go the samba4 route (still in<br>
> > development, but getting pretty good <a href="http://news.samba.org/">http://news.samba.org/</a>) you can setup,<br>
> > run, and manage the whole thing from linux.<br>
> ><br>
> > however, since ldap is such a pita to setup, i'm pretty sure you can find<br>
> > something easier to setup that will use windows' ldap to authenticate.<br>
> > samba3 will authenticate with ad<br>
> > (username=domain/user,password=password,workgroup=domain).<br>
> ><br>
> > what i don't know is what drupal uses for authentication. if it uses linux,<br>
> > i'd look for a pam module.<br>
><br>
> Sounds like I would need a dedicated server for this. This client has<br>
> regular shared hosting...</p>
<p>Probably. If its a chroot type host, you might be able to hack something together.</p>
<p>You might also see if there's some type of windows soap authentication interface you can setup with ssl on his end and hack around with that. You might also see if windows can export the users and password hashes to db and have a mysql table with that. Also, I think I mentioned that nmap has some rpc packages you might try to implement (though that may require root - idk). And if they have ruby on the server, metasploit will definitely work. </p>
<p>I'd start off looking for a php windows auth module though. Past that, it might be up to you to take any of the above and reverse engineer something into php. <br>
</p>