LinuxQuestions.org - Samba+winbind - some clarification needed on acciount used to bind to AD

- Linux - Server (https://www.linuxquestions.org/questions/linux-server-73/)

- - Samba+winbind - some clarification needed on acciount used to bind to AD (https://www.linuxquestions.org/questions/linux-server-73/samba-winbind-some-clarification-needed-on-acciount-used-to-bind-to-ad-4175450912/)

exodius

02-20-2013 02:20 AM

Samba+winbind - some clarification needed on acciount used to bind to AD

Greetings,
Have a question regarding joining linux to AD via samba+winbind.
Do i need to enter credentials with administrative privileges on AD domain to join linux workstation?
And as far as i know, winbind uses this account to get user, group names from domain. What happens if i change that user's password?
Is there any possibility that user password could be "extracted" or somehow altered?
Thanks in advance.

MeeLee

02-21-2013 04:03 AM

Hello,

How far have you got so far with your preparation for the domain join?

You would need to install samba and winbind (if it's not already there), then set up /etc/smb.conf appropriately (so that it knows what the domain is). Then, yes - you'd need an account with appropriate admin privileges for the linux workstation to join the domain.

The command would likely be:

net ads join -U <appropriateAdminAccount>

MeeLee

exodius

02-21-2013 04:24 AM

Actually already joined workstation to domain.

The question is about binding via AD user : if i change reset password of a user that joined workstation to domain, what will happen? How will winbind enumerate user/groups from AD?

All times are GMT -5. The time now is 05:44 AM.