Get your server issues fixed by our experts for a price starting at just 25 USD/Hour. Click here to register and open a ticket with us now!

Author Topic: Active Directory (AD) authentication on Linux VM  (Read 14737 times)

0 Members and 1 Guest are viewing this topic.

Aby

  • Guest
Active Directory (AD) authentication on Linux VM
« on: February 09, 2014, 02:04:21 pm »
How to authenticate in Windows Active Directory

1. Install likewise

$ sudo -i

<Ubuntu 12.04 LTS>
# apt-get install likewise-open
# vi /etc/nsswitch.conf


Modify following line
FROM:
hosts: files mdns4_minimal [NOTFOUND=return] dns mdns4

TO:
hosts: files dns mdns4_minimal [NOTFOUND=return] mdns4
# vi /usr/share/likewise-open/config/lsassd.reg

FROM:
"AssumeDefaultDomain"=dword:00000000

TO:
"AssumeDefaultDomain"=dword:00000001

# lwregshell import /usr/share/likewise-open/config/lsassd.reg
# lw-refresh-configuration

--------------------------------------------------------------------------------

<Ubuntu 10.04 LTS>
# add-apt-repository ppa:likewise-open/likewise-open-ppa
# apt-get update
# apt-get install likewise-open
-->Kerberos setting is blank
# vi /etc/nsswitch.conf

Modify following line
FROM:
hosts: files mdns4_minimal [NOTFOUND=return] dns mdns4

TO:
hosts: files dns mdns4_minimal [NOTFOUND=return] mdns4
# vi /etc/likewise-open/lsassd.reg

Modify following line

FROM:
"AssumeDefaultDomain"=dword:00000000

TO:
"AssumeDefaultDomain"=dword:00000001


# lwregshell import /etc/likewise-open/lsassd.reg
# lw-refresh-configuration


--------------------------------------------------------------------------------

[b]2. Enable sudo[/b]

# vi /etc/sudoers.d/likewise
-->%domain^users ALL=(ALL) ALL
# chmod 440 /etc/sudoers.d/likewise



When the VMs were deployed in Linux Pool. Execute following command in each VMs.
# domainjoin-cli join <FQDN Domain> domain-join-user

Input domain join user's password.
If following message was appeared, domain join is successful.


SUCCESS

You should reboot this system before attempting GUI logins as a domain user.
Then reboot.


# reboot