I know this has been talked about everywhere for ages, but I wanted to get some fresh input from these forums since members here have so much in common in terms of infrastructure and software with mine and my clients deployments.
I would like to find a free and open source on premise solution for identity and access management. Essentially to recreate MS Active Directory functionality with just the following capabilities:
User Account Management (with groups)
Computer/Device account management
DNS and Netbios integration
SSO with respect to using different devices on the same network.
I know that OpenLDAP will handle some of these, but I don’t know if it will handle all of them.
Functionality I want will include:
- automatic registration of authenticated devices/users with local domain and updated DNS (like when a domain user logs into a windows domain and joins a computer to the domain - that computer is added to the directory, as well as it’s name added to the local dns so that it can be found in the directory as well as in the local dns as: machine_name.local_domain.local
- network wide users and acl’s so that access can be managed on any device such that the acl’s will be aquired from the LDAP/Identity management server and authenticated there.
- sso once authenticated against the central server.
Thanks in advance for your thoughts and ideas