Steve Beavers LDAP script that runs on a regular basis and automatically updates local ESX groups and allows for user authentication based on AD Group Membership. Kerberos authentication must be in place and functioning before this authentication can take place.
From what I understand by reading the Forums, There are issues with this script and Windows 2003 SP1. Let's use the community space here to fix this issue and get this updated!
Just wondering if anyone has tried this on ESX 2.5.2. I can't get even the simple LDAP queries to work in there. Apparently the libcrypto.so.0.9.6 needed by /usr/lib/sasl/libdigestmd5.so has been replaced by libcrypto.so.0.9.6m (openssl?) and creating just a symbolic link doesn't work. I suspect either a newer cyrus-sasl-md5 would be required or it would need to be recompiled for 2.5.2.
If anyone has this script working on ESX 2.5.2 with AD 2000 , please let me know if you had to do anything special.
Virtual Center only taked you so far. Sooner or later you will need to log into the ESX server and when you have a bunch of servers centrialized management of user accounts is a must.
