How I helped one company do centralized authentication. Using Active Directory or LDAP as the authentication source, puppet to update when a new user is added and setting up proper authentications with kerberos, nfs, pam, nss and other technologies. Includes scenarios like ssh and sudo authentication and authorization scenarios.