Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 481
  • Last Modified:

How to join an active directory using linux?

How do you join an active directory server using linux, i mainly looking for the command line or programs that i use?
0
netscalable
Asked:
netscalable
  • 2
3 Solutions
 
jwphillips80Commented:
Winbind can be used to keep a unified login:  http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/winbind.html
0
 
jwphillips80Commented:
Here's something to help you out:  http://sadms.sourceforge.net/
0
 
mukul_dCommented:
Hi

There are three (at least two) components you need to hook a Linux computer to active directory.
1. Kerberos 5
2. Samba
3. Winbind (only if you want unified login).

Kerberos is the authentication connecting link between AD and Linux. The file you need to modify is /etc/krb5.conf. A typical file looks like this:
========START OF CODE===================
[logging]
 default = FILE:/var/log/krb5libs.log
 kdc = FILE:/var/log/krb5kdc.log
 admin_server = FILE:/var/log/kadmind.log

[libdefaults]
 default_realm = YOUR_DOMAIN_INCLUDING_THE_DOT
 dns_lookup_realm = true
 dns_lookup_kdc = false
 ticket_lifetime = 24h
 forwardable = yes

[realms]
 EXAMPLE.COM = {
  kdc = kerberos.example.com:88
  admin_server = kerberos.example.com:749
  default_domain = example.com
 }

 NA.RTA = {
  kdc = IP_ADDRESS_OF_YOUR_DC

[domain_realm]
 .example.com = EXAMPLE.COM
 example.com = EXAMPLE.COM

[appdefaults]
 pam = {
   debug = false
   ticket_lifetime = 36000
   renew_lifetime = 36000
   forwardable = true
   krb4_convert = false
 }
===============END OF CODE================

Linux distros nowadays come with Samba out of the box so you don't really have to do anything there unless you want you join to the domain (which I found to be much difficult and not too useful). You can access most of the Windows services by default. The last part is to configure Winbind to authenticate yourself to linux using the Windows AD logon credentials. Again that is optional unless you want to make the users login using the Windows user names and passwords.

Do you want your users login using AD credentials?
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now