Once this has completed successfully, a computer object will be created in Active Directory in the default computers container as shown below. We can confirm that we’re in the realm (Linux terminology for the domain) by running the ‘realm list’ command, as shown ~]# realm list If this fails, you can add -v to the end of the command for highly verbose output, which should give you more detailed information regarding the problem for further troubleshooting. The /etc/krb5.keytab file is also created during this process. This is really great as editing these manually usually leads to all sorts of trivial problems when joining the domain. Once you enter the password for your specific account, the /etc/sssd/nf and /etc/krb.conf files will be automatically configured. You will need to specify the username of a user in the domain that has privileges to join a computer to the ~]# realm join -user=administrator Now that we’ve got that out of the way we can actually join the domain, this can be done with the ‘realm join’ command as shown below. In this instance my DNS server in /etc/nf is set to one of the Active Directory servers hosting the domain that I wish to ~]# cat /etc/nf The CentOS server will need to be able to resolve the Active Directory domain in order to successfully join it. Yum install sssd realmd oddjob oddjob-mkhomedir adcli samba-common samba-common-tools krb5-workstation openldap-clients policycoreutils-python -y We are assuming that our domain is already setup and configured, we’re simply joining our CentOS server to an existing domain.įirst we want to install all of the below packages in CentOS. In this example I am using CentOS 7 and Windows Server 2012 R2, however the version of Windows should not matter. There are a number of ways to do this, however this is the easiest way that I’ve found to do it entirely through the command line. This will allow us to SSH into the Linux server with user accounts in our AD domain, providing a central source of cross-platform authentication. Here we’ll show you how to add your Linux system to a Microsoft Windows Active Directory (AD) domain through the command line.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |