Re: Not sure I agree about that...
Hmm, not sure it's feature equivalent at all - I tried it as I really didn't want a Domain Controller at home, but wanted something similar.
The equivalent of AD Users and Computers GUI is rubbish, and there's no way of creating OUs easily. All users are just shown in a massive list, with not heirarchy.
You have to use something like "Apache Directory something" as a client instead to get the structure.
It also uses Dogtag for SSL certs for clients, and I thought, great, I can also use it for my CA, and asked in forums/IRC (can't remember) on the best way of doing this, and was told in no uncertain terms that this would be a bad idea and to use a separate instance for my CA, which adds complexity for no reason.
I'd like to like it, but gave up as after a while, a reboot would destroy the LDAP indexes and I would have faff about sorting it out before any auth services would actually load.
Ok, it was the Turnkey Linux image, so maybe if i had used something else it might have been more stable, but it in general if was pretty disappointing.
As much as I hate MS, I do like AD, it's just a shame they are trying to get rid of it so eventually you will only be able to useuse their cloudy crap....
If anyone else can recommend a decent OSS (LDAP) alternative to AD, I'm all ears....