[KronisLV]

> Linux still doesn't have anything remotely as capable as Active Directory.

I legitimately want more people to talk about this and to share their experiences. Do people run OpenLDAP? Something like FreeIPA? Maybe 389 Server?

What's the most popular or maybe easiest to use *nix solution for managing lots of accounts and devices, policy etc.? What about solutions for just managing accounts/login information or integrating with self-hosted software of all sorts?

[Spivak]

Honestly, the best domain server for Linux is active directory and if you have but a single Windows machine in your school it’s mandatory anyway so unless you’re managing massive fleets to warrant the FreeIPA bridge sssd-ad is more than good enough.

[notesinthefield]

Every edu ive worked with using Linux rolls an ubuntu derivative which has for six LTS versions supported easy AD integration. Smaller subsets just use Ansible + AWX but they are typically just manging the basics.

[jandrese]

The AD integration on Linux is just getting you login. It doesn't support much local configuration of the endpoints, which is the killer feature of AD. I have also found the AD PAM modules to be a bit fragile. I keep having machines that work for awhile, then suddenly need 5 minutes to log in or simply can't log in at all after some time. It has been kind of frustrating for me. I want to tell people "just use your domain login, it will work", but its a lie too often.