Linux integration Active Directory

From RoggeWiki
Revision as of 08:49, 1 November 2018 by Tom (talk | contribs)
Jump to navigation Jump to search

Theoretically

  • For authentication: plugin Kerberos and configure it with AD domain (PAM).
  • Configure LDAP for NSS and point it to AD domain (NSS).

System Security Services Daemon (SSSD) is a set of daemons to manage access to remote directories and authentication mechanisms. SSSD has a AD module

The hostname determines the computername with which AD is joined.

Mapping SID to UID/GID.

- Iedere AD user kan inloggen. - sshd_config AllowGroups - sudo %domain-ssh-users@lab.local ALL=(ALL:ALL) ALL

Commands

realm join -vU user realm                      Join the domain
id                                                     Check join
Retrieved from "https://wiki.roggeman.nl/index.php?title=Linux_integration_Active_Directory&oldid=6407"