Originally posted by: SystemAdmin

I'd like to use AD as my ldap store for user authorisation. The documentation I found so faor up to AIX 6.1 only supports windows 2003 with unix services. Has anybody got it working with 2003 R2 ? Does IBM intend to support 2307bis schema ?

Thank you
Markus

Originally posted by: SystemAdmin

Good luck with this. We got it working but there were so many bugs that there is no way it could be used in a true production environment. IBM needs to do a lot on the side of AIX / LDAP as even getting an AIX server to use SUN ONE LDAP or OPEN LDAP is a chore with many schema changes. If you really want to use AD for authentication you can use a third party product like Centrify or Vintella.

Originally posted by: CRM

WE did try this a while ago, I seem to recall that MS changed something in the 2003 R2 release which broke the integration, the fix for this was in AIX 5.3 TL6 as a minimum.

If you are at TL6 or later of 5.3 (or 6.1) then it should just work, but I would agree with the previous poster, it took a while to get working and the debugging of problems was not the easiest.

I seem to recall there was a redbook/whitepaper with this all written up:

http://www.redbooks.ibm.com/abstracts/sg247165.html

Will be interested to hear how you get on as we had to leave this to one side while our estate was updated to TL6.

regards

Chris