Joining  an Ubuntu machine to an Active Directory domain A step by step guide
Initial configuration <ul><li>Windows Domain Controller </li></ul><ul><li>Domain: </li></ul><ul><li>adominguez.local </li>...
Initial configuration <ul><li>Ubuntu client </li></ul><ul><li>Hostname: </li></ul><ul><li>karakol </li></ul><ul><li>IP: </...
Software installation <ul><li>apt-get install… </li></ul><ul><li>samba </li></ul><ul><li>smbclient </li></ul><ul><li>samba...
nano /etc/krb5.conf <ul><li>[libdefaults] </li></ul><ul><li>default_realm = ADOMINGUEZ.LOCAL </li></ul><ul><li>   </li></u...
nano /etc/samba/smb.conf <ul><li>  [global] </li></ul><ul><li>  security = ADS  netbios name = karakol </li></ul><ul><li> ...
Domain joining and verification <ul><li>sudo net ads join –S w2003AD.adominguez.local –U Administrador </li></ul><ul><li>s...
nano /etc/pam.d/common-account
nano /etc/pam.d/common-auth
nano /etc/pam.d/common-password
nano /etc/pam.d/common-session
make home directory & login
Upcoming SlideShare
Loading in...5
×

Joining an ubuntu machine to an active directory

1,252

Published on

Step by step guide tu joining Ubuntu machine to an Active Directory Domain

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,252
On Slideshare
0
From Embeds
0
Number of Embeds
3
Actions
Shares
0
Downloads
9
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Joining an ubuntu machine to an active directory

  1. 1. Joining an Ubuntu machine to an Active Directory domain A step by step guide
  2. 2. Initial configuration <ul><li>Windows Domain Controller </li></ul><ul><li>Domain: </li></ul><ul><li>adominguez.local </li></ul><ul><li>DC: </li></ul><ul><li>w2003DC </li></ul><ul><li>IP: </li></ul><ul><li>192.168.0.200/24 </li></ul><ul><li>DNS: </li></ul><ul><li>127.0.0.1 </li></ul>
  3. 3. Initial configuration <ul><li>Ubuntu client </li></ul><ul><li>Hostname: </li></ul><ul><li>karakol </li></ul><ul><li>IP: </li></ul><ul><li>192.168.0.201/24 </li></ul><ul><li>DNS: </li></ul><ul><li>192.168.0.200 </li></ul><ul><li>194.179.1.100 </li></ul>
  4. 4. Software installation <ul><li>apt-get install… </li></ul><ul><li>samba </li></ul><ul><li>smbclient </li></ul><ul><li>samba-common-bin </li></ul><ul><li>winbind </li></ul><ul><li>krb5-user </li></ul><ul><li>krb5-config </li></ul>
  5. 5. nano /etc/krb5.conf <ul><li>[libdefaults] </li></ul><ul><li>default_realm = ADOMINGUEZ.LOCAL </li></ul><ul><li>  </li></ul><ul><li>[realms] </li></ul><ul><li>ADOMINGUEZ.LOCAL = {  kdc = 192.168.0.200  default_domain = adominguez.local  admin_server = 192.168.0.200  } </li></ul><ul><li>adominguez.local = { kdc = 192.168.0.200  default_domain = adominguez.local  admin_server = 192.168.0.200  } </li></ul><ul><li>adominguez = { kdc = 192.168.0.200  default_domain = adominguez.local  admin_server = 192.168.0.200  } </li></ul><ul><li>[domain_realm] </li></ul><ul><li>.adominguez = ADOMINGUEZ </li></ul><ul><li>.adominguez.local = ADOMINGUEZ.LOCAL </li></ul><ul><li>[appdefaults] </li></ul><ul><li>   pam = {           ticket_lifetime = 1d           renew_lifetime = 1d           forwardable = true           proxiable = false           retain_after_close = false           minimum_uid = 0           try_first_pass = true       } </li></ul>Run as root: kinit Administrador@ADOMINGUEZ.LOCAL
  6. 6. nano /etc/samba/smb.conf <ul><li>  [global] </li></ul><ul><li>  security = ADS netbios name = karakol </li></ul><ul><li>  realm = ADOMINGUEZ.LOCAL password server = 192.168.0.200 workgroup = ADOMINGUEZ log level = 1 syslog = 0 idmap uid = 10000-29999 idmap gid = 10000-29999 winbind separator = + winbind enum users = yes winbind enum groups = yes winbind use default domain = yes template homedir = /home/%D/%U template shell = /bin/bash client use spnego = yes domain master = no server string = linux as AD client encrypt passwords = yes </li></ul><ul><li>  [homes] </li></ul><ul><li>      comment = Home Directories valid users = %S browseable = No read only = No inherit acls = Yes </li></ul><ul><li>[profiles] </li></ul><ul><li>      comment = Network Profiles Service path = %H read only = No store dos attributes = Yes create mask = 0600 directory mask = 0700 </li></ul>Run as root: testparm
  7. 7. Domain joining and verification <ul><li>sudo net ads join –S w2003AD.adominguez.local –U Administrador </li></ul><ul><li>sudo /etc/init.d/winbind restart </li></ul><ul><li>sudo net rpc testjoin </li></ul><ul><li>sudo net ads info </li></ul><ul><li>net rpc info –U Administrador </li></ul><ul><li>wbinfo –u </li></ul><ul><li>wbinfo –g </li></ul><ul><li>getent passwd </li></ul><ul><li>getent group </li></ul><ul><li>su domain-user </li></ul>
  8. 8. nano /etc/pam.d/common-account
  9. 9. nano /etc/pam.d/common-auth
  10. 10. nano /etc/pam.d/common-password
  11. 11. nano /etc/pam.d/common-session
  12. 12. make home directory & login
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×