Joining  an ubuntu machine to an active directory
Upcoming SlideShare
Loading in...5
×

Like this? Share it with your network

Share

Joining an ubuntu machine to an active directory

  • 1,476 views
Uploaded on

Step by step guide tu joining Ubuntu machine to an Active Directory Domain

Step by step guide tu joining Ubuntu machine to an Active Directory Domain

More in: Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
    Be the first to like this
No Downloads

Views

Total Views
1,476
On Slideshare
1,416
From Embeds
60
Number of Embeds
3

Actions

Shares
Downloads
7
Comments
0
Likes
0

Embeds 60

http://soydelafp.blogspot.com.es 36
http://soydelafp.blogspot.com 23
http://soydelafp.blogspot.ru 1

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. Joining an Ubuntu machine to an Active Directory domain A step by step guide
  • 2. Initial configuration
    • Windows Domain Controller
    • Domain:
    • adominguez.local
    • DC:
    • w2003DC
    • IP:
    • 192.168.0.200/24
    • DNS:
    • 127.0.0.1
  • 3. Initial configuration
    • Ubuntu client
    • Hostname:
    • karakol
    • IP:
    • 192.168.0.201/24
    • DNS:
    • 192.168.0.200
    • 194.179.1.100
  • 4. Software installation
    • apt-get install…
    • samba
    • smbclient
    • samba-common-bin
    • winbind
    • krb5-user
    • krb5-config
  • 5. nano /etc/krb5.conf
    • [libdefaults]
    • default_realm = ADOMINGUEZ.LOCAL
    •  
    • [realms]
    • ADOMINGUEZ.LOCAL = {  kdc = 192.168.0.200  default_domain = adominguez.local  admin_server = 192.168.0.200  }
    • adominguez.local = { kdc = 192.168.0.200  default_domain = adominguez.local  admin_server = 192.168.0.200  }
    • adominguez = { kdc = 192.168.0.200  default_domain = adominguez.local  admin_server = 192.168.0.200  }
    • [domain_realm]
    • .adominguez = ADOMINGUEZ
    • .adominguez.local = ADOMINGUEZ.LOCAL
    • [appdefaults]
    •    pam = {           ticket_lifetime = 1d           renew_lifetime = 1d           forwardable = true           proxiable = false           retain_after_close = false           minimum_uid = 0           try_first_pass = true       }
    Run as root: kinit Administrador@ADOMINGUEZ.LOCAL
  • 6. nano /etc/samba/smb.conf
    •   [global]
    •   security = ADS netbios name = karakol
    •   realm = ADOMINGUEZ.LOCAL password server = 192.168.0.200 workgroup = ADOMINGUEZ log level = 1 syslog = 0 idmap uid = 10000-29999 idmap gid = 10000-29999 winbind separator = + winbind enum users = yes winbind enum groups = yes winbind use default domain = yes template homedir = /home/%D/%U template shell = /bin/bash client use spnego = yes domain master = no server string = linux as AD client encrypt passwords = yes
    •   [homes]
    •       comment = Home Directories valid users = %S browseable = No read only = No inherit acls = Yes
    • [profiles]
    •       comment = Network Profiles Service path = %H read only = No store dos attributes = Yes create mask = 0600 directory mask = 0700
    Run as root: testparm
  • 7. Domain joining and verification
    • sudo net ads join –S w2003AD.adominguez.local –U Administrador
    • sudo /etc/init.d/winbind restart
    • sudo net rpc testjoin
    • sudo net ads info
    • net rpc info –U Administrador
    • wbinfo –u
    • wbinfo –g
    • getent passwd
    • getent group
    • su domain-user
  • 8. nano /etc/pam.d/common-account
  • 9. nano /etc/pam.d/common-auth
  • 10. nano /etc/pam.d/common-password
  • 11. nano /etc/pam.d/common-session
  • 12. make home directory & login