Sponsored Link
Preparing your system
Need to install all the required packages using the following command
sudo apt-get install realmd sssd sssd-tools samba-common krb5-user packagekit samba-common-bin samba-libs adcli
During installation of krb5-user, it will prompt you for the default Kerberos realm. This should be your domain in all caps. Example: LOCALDOMAIN.XX
Now, go ahead and get a valid kerberos ticket for your AD admin: kinit [email protected]
Configuring realmd
You need to edit /etc/realmd.conf
sudo vi /etc/realmd.conf
Change the following option
[service]
automatic-install = no
Save and exit the file
Configuring sssd.conf file
First you need to change the sssd.confile using the following command
sudo chmod 0600 /etc/sssd/sssd.conf
Now edit the file using the following command
sudo /etc/sssd/sssd.conf
add the following lines
[nss]
filter_groups = root
filter_users = root
reconnection_retries = 3[pam]
reconnection_retries = 3
Comment out the following line
use_fully_qualified_names = True
to
#use_fully_qualified_names = True
Save and exit the file
Join in unattended mode with new user principal using the following command
realm –verbose join localdomain.xx –user-principal=myubuntuserver/[email protected] –unattended
Reboot your server. You should now be able to id a domain user as follows: id LOCALDOMAIN\\myuser
You can now su to a domain user: su myuser@localdomain
Via Funwithlinux