What would it take to get an Active Directory like system in a Linux environment?

linux active-directory

I know there isn't anything standard like Active Directory in the Linux world, but I'm assuming there's some way (or multiple ways) to implement a similar type of system. What options are out there? I've done some searching but so far I've just come up with stuff for integrating Linux into an Active Directory environment.

The primary need is single sign on and centralized account management. A Group Policy type setup would be useful too.

The reason I'm asking is because I'm doing research into what it would take to setup and maintain an all Linux environment for a new business. I'm trying to figure out the costs, downsides, and benefits of such an environment.


You can take a look into OpenLDAP, or another directory services solution, but I have yet to find an 'all in one' solution such as ActiveDirectory - there always seems to be pieces, such as GPOs, which you need to sort out yourself.

Take a look at:

RedHat Directory Server

Apache Directory Server

OpenLDAP

eDirectory

OpenDS


If you're looking for something that runs on Linux there are a couple of directory servers out there. The closest thing to Active Directory is probably the Mandriva Directory Server. RedHat also has their own directory server which does some of the same things.


I think the best Open Source competitor for AD will be FreeIPA. Like AD it integrates DNS, Kerberos and LDAP. It is not there yet in terms of features, but it looks like the upcoming release 2 will deliver the goods.

Gosa is another OSS project, but would need heavy customization for group policy like features. Since it is just a web front end for a custom OpenLDAP schema, it is reliable and fast. But the interface is awkward, especially for access control.

Zivios also looks like an interesting upcoming project. Edit on May 02 2012: Zivios hasn't been updated in a while.


There are a number of directory services implementations availible for linux. Most are based on LDAP and so provide a standardised language for applications that use the directory to communicate with. It also means you can communicate between different directory services.

  • OpenLDAP
  • Red Hat Directory Server
  • Fedora Directory Server
  • IBM Tivoli Directory Server

Many of the Red Hat clones have their own implementation of the Red Hat Directory Server.

Related

Create Code Signing Certificate on Windows for signing PowerShell scripts
Multiple SSL certs with Stunnel
Multithreaded downloading with shell script
How can I install subversion client in Ubuntu?
Allocate swap after Ubuntu 14.04 LTS installation
.desktop files not launching from desktop in Ubuntu 20.04 LTS
Texmaker Shortcuts not working on Ubuntu 16.04
Ubuntu "Could not get screen information" after upgrade
GParted - Cannot open display [duplicate]
Is it a bad idea to upgrade to 18.04 right now? [duplicate]
What are some good ASCII art generators?
Enable line numbers in gedit