Return-Path: 
 <users-return-1140-apmail-directory-users-archive=directory.apache.org@directory.apache.org>
Delivered-To: apmail-directory-users-archive@www.apache.org
Received: (qmail 39508 invoked from network); 23 Jan 2008 13:36:21 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 23 Jan 2008 13:36:21 -0000
Received: (qmail 34891 invoked by uid 500); 23 Jan 2008 13:36:12 -0000
Delivered-To: apmail-directory-users-archive@directory.apache.org
Received: (qmail 34868 invoked by uid 500); 23 Jan 2008 13:36:12 -0000
Mailing-List: contact users-help@directory.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:users-help@directory.apache.org>
List-Unsubscribe: <mailto:users-unsubscribe@directory.apache.org>
List-Post: <mailto:users@directory.apache.org>
List-Id: <users.directory.apache.org>
Reply-To: users@directory.apache.org
Delivered-To: mailing list users@directory.apache.org
Received: (qmail 34857 invoked by uid 99); 23 Jan 2008 13:36:11 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 23 Jan 2008 05:36:11 -0800
X-ASF-Spam-Status: No, hits=-0.0 required=10.0
	tests=SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of elecharny@gmail.com
 designates 66.249.92.169 as permitted sender)
Received: from [66.249.92.169] (HELO ug-out-1314.google.com) (66.249.92.169)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 23 Jan 2008 13:35:43 +0000
Received: by ug-out-1314.google.com with SMTP id j3so95524ugf.49
        for <users@directory.apache.org>;
 Wed, 23 Jan 2008 05:35:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:content-type:content-transfer-encoding;
        bh=voW0W77VDoIrFu5wEPjEL1vzyrA4DecXYEwvUt5YP98=;
        b=PsTP29rQ8f8ZsbPQFvQp43ba93twwb6IsdhpGK67XU+bud/LaxfCneGZB3wRQNTyEKliJipyN86UUPKrtfEBKzyrwagC6fjEFKo0N45tBT3NEJV+jPu+jJMG0AOsyg+zRvCn/EuVMKIEUPnKy2pCIeeyGp/YxesFTURcQ+etjfI=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=gamma;
        h=message-id:date:from:user-agent:mime-version:to:subject:references:in-reply-to:content-type:content-transfer-encoding;
        b=d2r0lX5V/U1K6C7jBeooi9kWZ1vgXwO8t8oYiTxnz8Q2EH1PvwsPVXKJ8dqCO+cgzl4xrhK/386ZVBaNQ08z6yuCfWLuglKYmtjdzDfORCF7fgILbqDlT3G92h8qTRKICsMLUPgoU5qHFHby2DtNliZwV3cHUopBJctw849CKb8=
Received: by 10.67.119.15 with SMTP id w15mr899822ugm.73.1201095348490;
        Wed, 23 Jan 2008 05:35:48 -0800 (PST)
Received: from ?192.168.1.5? ( [82.245.116.110])
        by mx.google.com with ESMTPS id
 y18sm14086389fkd.17.2008.01.23.05.35.46
        (version=TLSv1/SSLv3 cipher=RC4-MD5);
        Wed, 23 Jan 2008 05:35:47 -0800 (PST)
Message-ID: <47974284.2020601@gmail.com>
Date: Wed, 23 Jan 2008 14:35:00 +0100
From: Emmanuel Lecharny <elecharny@gmail.com>
User-Agent: Thunderbird 1.5.0.14pre (X11/20071023)
MIME-Version: 1.0
To: users@directory.apache.org
Subject: Re: [Feedback needed] ADS pros and cons  ?
References: <47824C87.8030909@gmail.com> <fn6vrs$9lt$1@ger.gmane.org>
 <47970BF8.2030700@tranquil-it-systems.fr> <47971E3C.1050801@gmail.com>
 <47973ABB.90301@tranquil-it-systems.fr>
In-Reply-To: <47973ABB.90301@tranquil-it-systems.fr>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 8bit
X-Virus-Checked: Checked by ClamAV on apache.org

Hi Denis !


> My fault, I have only been looking at the ldap part of apache 
> directory... 
No problem at all ! At least, it demonstrates that we need to improve a 
lot the documentation :)

> I defininitly shall try the kerberos/dns/dhcp part of ApacheDS. 
> Currently I'm using heimdal, bind and isc dhcp server on ldap backend 
> (openldap), and looking for better solution, that's why I'm following 
> this list. I didn't realized I could already get all of it bundled in 
> ApacheDS! I'll try to accomodate for a few hours to roll out a test 
> bench.
Don't blame me if you have problems while doing such an experiment ;) 
This is a very early bird, and it needs a lot of work to be able to use 
it smoothly... Any feedback will help, of course !
>
>> And when it comes to LDAP server compliance, please just read this : 
>> http://www.symas.com/documents/Adam-Eval1-0.pdf
>>
>> So we think that ADS could stands for an active directory 
>> replacement. Even if you just need the ldap part.
>
> Sorry I think I misrepresented my point. I don't claim that ActiveDS 
> is a good, bad or better LDAP server. I just wanted to point out that 
> ActiveDS is not just an ldap server. 
I dodn't want to say that AD is a bad piece of techno either. I just 
wanted to point to this very interesting paper written by our friends at 
OpenLdap (which is a really good LDAP server btw!)

Anyway, replacing AD by another LDAP server is not that easy, if you 
consider that AD is a major element of the Window$(tm) system.
> The fact that it is much more than an ldap server makes it one of the 
> most difficult part of proprietary stuff to get out of a IT 
> infrastructure... What a pain !
indeed :)


Thanks Denis !


-- 
--
cordialement, regards,
Emmanuel L�charny
www.iktek.com
directory.apache.org