Thank you Ontapforrum:
It looks like I have a little reading to do. We have several flavors of LDS, including, believe it or not, Adam still running; unfortunately we don't have an ID SME, so I'm trying to figure out how to go forward.
Our aim is to manage permissions from one platform, but have them apply to both SMB and NFS (non-kerb).
Justin Parisi recommended using SMB/NTFS as the driving protocol, but I need to document the implementation, management and operation of permissions for all groups involved, i.e. Windows, AD, Help Desk, Storage, ;). Being able to next groups in LDAP will make things alot easier.
I will read, and flag this as an answer in a few days. Hope you don't mind waiting...
TasP