Need help adding a Solaris 10 zfs server to active directory for user authentication

Posted on 2009-02-14
Last Modified: 2013-12-21

I am trying to build a new file server of Solaris 10 and zfs . The problem I am currently having is in adding the server to our active directory domain for authentication of users. My co-workers and I have tried several approaches and all have failed (most likely because we are unix n00bs). We need a set of setup instructions for dummies if at all possible.

Thank you,
Question by:aiscom
    LVL 40

    Accepted Solution

    LVL 22

    Assisted Solution

    Have you considered using OpenSolaris? OpenSolaris has quite a few interoperability fixes that have not yet made it into Solaris 10. Not all OpenSolaris features are backported to Solaris 10, so there may be some that will never make it into Solaris 10.

    Author Comment

    thank you omarfarid we have been have been fallowing the instructions you linked to however when we run the net ads join command we are  getting the fallowing error "[2009/02/16 15:30:04, 0] utils/net_ads.c(286)
    [2009/02/16 15:30:04, 0] utils/net_ads.c(286) 
    ads_connect: so logon servers
    Failed to join domain: no logon servers

    Open in new window


    Author Comment

    ok we have run in to new problems with ldap please check the fallowing config and let us know if there are any errors

    bash-3.00# ldapclient list
    NS_LDAP_BINDDN= cn=solaris,cn=Users,dc=agnitek,dc=local
    NS_LDAP_BINDPASSWD= {NS1}c5eb663af263c5
    NS_LDAP_SEARCH_BASEDN= dc=agnitek,dc=local
    NS_LDAP_AUTH= simple
    NS_LDAP_SERVICE_SEARCH_DESC= passwd:dc=agnitek,dc=local?sub
    NS_LDAP_SERVICE_SEARCH_DESC= group:dc=agnitek,dc=local?sub
    NS_LDAP_ATTRIBUTEMAP= group:userpassword=solaris
    NS_LDAP_ATTRIBUTEMAP= group:memberuid=10001
    NS_LDAP_ATTRIBUTEMAP= group:gidnumber=UnixGroup
    NS_LDAP_ATTRIBUTEMAP= passwd:gecos=cn
    NS_LDAP_ATTRIBUTEMAP= passwd:gidnumber=UnixGroup
    NS_LDAP_ATTRIBUTEMAP= passwd:uidnumber=10001
    NS_LDAP_ATTRIBUTEMAP= passwd:homedirectory=/home/solaris
    NS_LDAP_ATTRIBUTEMAP= passwd:loginshell=/bin/sh
    NS_LDAP_ATTRIBUTEMAP= shadow:shadowflag=shadowFlag
    NS_LDAP_ATTRIBUTEMAP= shadow:userpassword=userPassword
    NS_LDAP_OBJECTCLASSMAP= group:posixGroup=group
    NS_LDAP_OBJECTCLASSMAP= passwd:posixAccount=user
    NS_LDAP_OBJECTCLASSMAP= shadow:shadowAccount=user
    LVL 22

    Assisted Solution

    The NS_LDAP_BINDDN parameter doesn't look right to me. All of the setups I have seen used a proxydn and cn=proxyuser.

    Author Closing Comment

    thank you for your help

    Featured Post

    Better Security Awareness With Threat Intelligence

    See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

    Join & Write a Comment

    Preface There are many applications where some computing systems need have their system clocks running synchronized within a small margin and eventually need to be in sync with the global time. There are different solutions for this, i.e. the W3…
    Entering a date in Microsoft Access can be tricky. A typo can cause month and day to be shuffled, entering the day only causes an error, as does entering, say, day 31 in June. This article shows how an inputmask supported by code can help the user a…
    Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
    In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

    755 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    21 Experts available now in Live!

    Get 1:1 Help Now