“We are pleased to announce the release of Fedora Directory Server 1.0! This version fulfills the promise to open all of the directory server source code that we made almost 1 year ago – 12/8/2004 – the date at which Red Hat acquired the code. Here are some Screenshots.”
Seems to be pretty cool. So i was wondering.
It will be available for FC2, FC3, FC4, RHEL3, RHEL4 and work is being done on Solaris atm. If you want it on your distro of choice you could always attempt to build it on your platform, source is available here: http://directory.fedora.redhat.com/sources/
I see that they will continue to maintain binaries for Solaris…phew.
Why isn’t this using Bluecurve? heh
Good question actually, I thought Swing in Java5 could manage it. It’d be interesting to see if they could get this working with GCJ.
Overall though, this looks pretty cool. You could use it, via PAM, to take care of system logins, Samba logins, FTP logins, everything basically. And the fact that it has a decent graphical interface is a godsend. Even the easy tutorials for OpenLDAP, are intimidatingly difficult, and none of its GUIs had made much progress last time I looked.
The Fedora Directory Server Swing GUI tools do work on GNU Classpath 0.19 and GCJ 4.1. Those screenshots are of the tools running on a proprietary JVM but when Fedora Core 5 ships the tools will be running out-of-the box on the system-installed GCJ (no need to download a proprietary JVM).
Currently GNU Classpath’s Swing implementation does not support native desktop themes but we do plan to write a GTK pluggable look and feel. This would be a fun project for someone wanting to cut his teeth on GNU Classpath development.
Why isn’t this using Bluecurve? heh
Can’t be certian, though it looks like the UI uses Java…could be mistaken. Maybe it’s just a theme I’m not familiar with, thought the mini icons and tabs reminind me of Java apps.
what exactly is that ? is like Active Directory of Microsoft ?
Yes – it is LIKE Active Directory.
Although probably more accurate to say that Acitve Directory is like LDAP. They work on an identical principle of data storage, but differ slightly in the implementation and differ a bit more in the interfaces.
LDAP came first I think – then Active Directory was Microsoft’s “embrace & extend” on it.
Although probably more accurate to say that Acitve Directory is like LDAP. They work on an identical principle of data storage, but differ slightly in the implementation and differ a bit more in the interfaces.
LDAP came first I think – then Active Directory was Microsoft’s “embrace & extend” on it.
LDAP is actually a protocol. AD is a whole database structure with some vague compatibility with LDAP. Novell e-directory is like AD(only more robust, and not a flat database structure) is actually LDAP compliant. Or in another words, you use LDAP to talk to e-directory.
I’m not sure how FDS works with LDAP.
All of these directory implementations are based on the LDAP protocol. Some are more closed down (MAD, Novell DS), others more customizable (openldap). Openldap follows the standard very closely. But you can connect to and query each one, including FDS the same way. The big differences are in replications, nice GUIs & integration with Kerberos etc.
I just hopes this release shuts up all of those people that complain about Red Hat and them becoming the Microsoft of the Linux world. If nothing else, they are true to the statement that they are supporters of the GPL. Everything that they buy has been releases.
Redhat has done so much for Linux, yet the get so much flak for trying to make money to pay their programmers and expand. If it weren’t for Redhat, Linux would not be anywhere near where it is today. The fact is, weekend coders are not able to produce the level of software that is required for Linux to be more than a curious geek toy.
Sun’s Directory server is now free and open source.. and there is service if you want.
http://www.sun.com/software/products/directory_srvr/home_directory….
I see a “trial download” link, but nothing about Open Source.
a correction, it is “no cost” not open source for now. Directory server seems to be a part of Sun Java Identity Management Suite, which is available no cost as a part of Solaris Enterprise System. Maybe web site needs to be updated a bit. this was a recent change.
http://www.sun.com/software/solaris/get.jsp
Did they also get the old Netscape Mail server as part of that AOL deal? Are they planing to open source it also?
From what I understand, they’re opening the whole setup – meaning, you’ll have a complete opensouce setup, from operating system to middleware.
As been pointed out before, Sun’s directory server is also available (and will also apparently be open sourced). It also runs on Linux, Solaris, Windows etc. It’s also a lot further along than the Fedora directory server – they’re both based on the old Netscape iPlanet code, although Sun have been actively maintaining it and supporting it as a shipping product. If you want to get a feel for it, try checking out the docs on docs.sun.com. So, while this is all cool and everything it really doesn’t seem to be the big deal that RedHat are making it out to be – if you’ve ever done anything with old iPlanet products, the interface will seem strangely familiar
And I was disappointed to see they’ve not done anything to address the numerous quirks and annoyances in the GUI since iPlanet DS. When Sun’s DS is open sourced, what will the point be in using this older system ?
Let’s see: “When Sun’s DS is open sourced, what will the point be in using this older system ?”
Hmm, “When OpenSolaris is available to actually USE, what will be the point in Linux”
See a pattern emerging?
Hmm, “When OpenSolaris is available to actually USE, what will be the point in Linux”
Same as now. OpenSolaris won’t change a bit. For example, I will still use Linux because it is “free”.
Solaris might be opensourced, but call me a sceptic or anything, I don’t believe Sun (well, most of my disbelieve could be accounted to McNeally and Schwartz. One day this, next day that) and I don’t believe I ever will
See a pattern emerging?
No.
When Sun’s DS is open sourced, what will the point be in using this older system ?
That’s kind of up to Red Hat. They can either continue to update and work their DS, or they can adopt Suns. It’s an important decision for them, because they’re going to need to support one or the other.
What will be interesting is in 6 months to see if someone does a DS shootout amoung Sun DS, RH DS, and OpenLDAP.
Since I am not familiar with Netscapes/Fedora’s directory services, I am confused by what this may present to IT sysadmins in the future. Being familiar with Active Directory and Novell, I think I am only seeing a tree and not the entire forest.
Is there a client similar to Novell’s client32 that you would install onto a windows NT/9x machine to allow for logins into the directory services? Is there a client to install onto a linux box that requires to the linux user to log into directory services instead of a local account? Even better, a mac client for macs to log into the directory?
Since I am a getting tired of dealing with spyware, I have been researching ways for some of our clients (mostly car dealership) to avoid using windows and instead using mac and linux/freebsd systems. The question I keep asking myself is why isnt there a decent alternative to Active directory/Novell NDS. Perhaps, this could be it? I do hope so.
-Tim Bazzinett
There are way using PAM’s or NIS wrapper to have an LDAP server support centeralized login for UNIX machines. I have done this with Linux and Solaris in the past.
The funny part is that we used to do it with a Netscape iPlanet Server, so this is probably roughly the same code base that I know supports it.
First, we have OpenLDAP, which has had all sorts of issues. Then, Red Hat released the NS Directory Server and have now updated it. Finally, we have Suns DS being available free for now, and OSS later.
What the Red Hat and Sun releases will, hopefully, accomplish is making Directory Servers even yet more pervasive. Ideally they’ll pull this off by making the servers easier to use and more approachable. Setting up an LDAP server today really is a black art, with an entirely new vocabulary. I’d like to see it simplfied.
In the past we had NIS+, Active Directory and even NetInfo. But those are all becoming commoditized by generic LDAP. Sure, they all offer distinct features and advantages, but the LCD is pretty much LDAP, and with a decent Directory Server “generic LDAP” isn’t that bad.
So, ideally, LDAP servers will be more commonplace, perhaps even in smaller deployments, and more programs will get the benefits that Directory Servers can provide.
I use Active Directory (Kerberos and LDAP) to authenticate users on NIX and many other web applications to achieve single-sign-on. Works fine for me.
AD is a LDAP server though its schema is proprietary, but if you know its structure, you can still use it as a LDAP server, or extend it. The only problem with AD is its CAL cost.
It’s nice to see other identity servers free now, but are they able to replace AD for Windows clients?
It’s nice to see other identity servers free now, but are they able to replace AD for Windows clients?
Judging by the screenshots, I’d say yes. One of them shows a column for POSIX-compliant nodes and NT nodes.
This might make a nice solution for a smaller company with less users than what necessitates W2k3 Server.
An OES box is a good middle of the road between the two. The per user cost for Novell’s products are much more competitive than MS’s CALs. Plus you get a directory which has been around longer, and I hate to use such a cliche'(such as “elegant” code), but more mature.
“Sun have been actively maintaining it and supporting it as a shipping product”
The link on Sun’s site for DS 5.2 says the English version is supported on… “RedHat Linux 7.2”
actively maintaining and supporting it my ass
🙂
it’s cert on rhel AS now though…
Apache Directory Server (and much more!) is coming…
http://directory.apache.org/
I was having a look at ADS a few weeks back and it looks quite interesting…they will have a lot of catching up to do though
Looks like it stores ACLs in directory, that’s nice. With OpenLDAP you need to set ACLs in text files, I really don’t like that
That have problem getting a password dialog from the startconsole command?
Not that it is much of a problem really as you can type the password directly into the splashscreen if you specify the user name and the url on the command line. Even the passord can be specified on the command line using a -w flag, but the screen shots I have seen pops up login dialog. I’m using FC4 and Sun jdk1.5.0_6
Other than that the GUI looks great, I had it up and running for Linux user logins in less than 15 minutes.
I will probably have to tweak it some more for production use though, as of now there is no working SELinux policy that handles it, and I need to read some mre documentation to make sure all permissions are right, but this looks really promising.
Fedora Directory Server is actually the code that Redhat bought from AOL. AOL has acquired the code when they split with Sun from iPlanet. However, Sun has been more actively maintaining the code (tons of bug fixes and new features) and has some of the largest LDAP deployments in the world. The same product from Sun is free (Java Enterprise System Directory Server 5.2p4) now and it runs on many different platforms (Solaris sparc and x86, hpux, linux etc). If you are looking for a Linux based robust LDAP deployment then have a look at JES Directory Server first. You may find it worthful.
I’ve done a large scale deployment, and a small office deployment, using Sun’s DS – what Red Hat has is the nasty antique derivative of what Sun’s shipping today. They’re just hoping to get the community to go do the work that Sun’s engineers did. You have to love their model of just dumping crap on the community and having them devote their time and money. Wish I was that smart.
Unless Sun have changed their licensing very recently, Sun’s DS is not free software. So perhaps you should complain about Sun rather than complaining about Red Hat.
Even though the Sun version of the software, may contain some more bugfixes and somewhat updated replication procedures, the fedora directory server is far better than other free software for directory services available today.
Sun just announced their directory server – AND IDENTITY MANAGEMENT SUITE – are free and open source (in fact, I just downloaded their comms stuff). Along with the rest of their enterprise platform software. I still wonder why Red Hat needs to exist – at this point, they’re just aping Sun and hoping to look hip.
people were saying similar things about Sun only a few months ago…somehow I think there is enough space in the industry for both of them
🙂 Linux and Solaris is mostly at the same level at this point. Huge computers run Linux around the world. Companies like Oracle and IBM supports their large scale systems on Linux. Linux servers is deliverd with up to 512 CPUs and 128TB RAM running with one Linux kernel.
We have FreeBSD, Linux, Solaris, OpenBSD, NetBSD and DragonflyBSD is promising.
I can`t see any negativnes with some competition. I am not for monopoly of any technology. I am all for open standards and a working competition. Competition in both technology and markets.
There is no problem using FreeBDD, Linux, Solaris and OpenBSD in the same network. They look mostly the same for the user and the admin. Just different good and bad sides. Different tools for different tasks.
My problem with Sun is that it seems that they don’t really believe in open source as a business model. In fact, it seems that they view it as a final defensive measure against open source alternatives. Is it a coincidence that the second RedHat gets a fully working 1.0 release of their directory server, Sun immediately announces that they will be open sourcing their version? If a fully-working, multimaster, open source directory server never came out, would Sun have ever opensourced their version? I personally doubt it. I myself will always push for RedHat products. I know regardless of what product they work on, they will open source it, they will give it away free to the community, and they will make Linux/open source a more viable technology. On the otherhand, I think Sun only open sources their technology only to keep themselves relevant.