I think I have read almost all tutorials now regarding AD integration. But let me first describe what I want.
We have an AD setup in-house which seems to work well enough for the windows clients. I have an XServe G5 connected to a RAID which I would like to use as home server for our ibook and powerbook users. They are going to get mobile homes. The simple way would be to put the servers path into the UNC of AD and simply let all mac clients authenticate using the AD plugin. The problem is I have a really hard time to convince the AD admin to change that entry.
We are talking about 10 users here and just creating OD accounts for the m is okay for me but I don't want them to run to three different people just for passwords (AD, NIS, and me for OD). So the solution seems to be to let them get their user from OD and then direct authentication to the AD KDC.
Now I would like to have a Howto do that. I already killed my setup in an attempt. I tried putting the AD server as LDAPv3 server in. A broken entry in Directory Access' LDAPv3 plugin has made the server unsuable (DirectoryService unexpectedly quitting every few seconds, after kerberosautoconfig starts it); I can't even sudo anymore ... new install tomorrow.
Thanks,
Leo.