Licensing issue for AD Authentication
Running Alfresco with AD authentication. Our machines have device CALS as we have more users than machines. Whenever a user logs into the system from outside as they are logging on using a device that is not covered by our CALS then i've been inofmred by our licensing people the they will need a device CAL. We can't really justifiy converting our licenses into user CALS. Just thought i'd put the question out there for opinions.
Simply puy users login to a website (Alfresco) and login which is authenticated against AD and from there on all there deadlings are with Alfresco and its own internal MySQL database. For this each user who accesses this not using out equipment it needs a license.
Now my other option would be to put something like Open LDAP infront of AD as a kind of chaining mechanism so when a user logs in the request goes to Open LDAP to cache the request and the response so after the first login the users will use the Open LDAP data rather than AD data and the licensing issue would be between our Centos Linux server and AD talking to each other meaning one license required? Got a really good project but the cost of licensing could put the dampeners on things.