Help answer threads with 0 replies.
Go Back > Forums > Linux Forums > Linux - Server
User Name
Linux - Server This forum is for the discussion of Linux Software used in a server related context.


  Search this Thread
Old 10-13-2008, 05:01 AM   #1
LQ Newbie
Registered: Oct 2008
Posts: 12

Rep: Reputation: 0
Unhappy UBUNTU authentication against windows active directory


I am new in linux and i need some help to configure my ubuntu 8.04 hardy to authenticate against windows active directory (win 2003 server)

any help......
Old 10-13-2008, 06:21 AM   #2
Registered: Aug 2006
Distribution: Fedora, CentOS, RHEL, Debian
Posts: 978

Rep: Reputation: 30
Use "likewise" easy going.
Old 10-13-2008, 06:24 AM   #3
Plastic Freddie
LQ Newbie
Registered: Jan 2007
Location: Shrewsbury, UK.
Distribution: Ubuntu - for an easy life. Originally used heavily-customised Arch. Also dabbled in SLES.
Posts: 6

Rep: Reputation: 1
There's a couple of places on the Ubuntu site you ought to look at.

Also, some useful threads on (although this one is SUSE-centric)

Old 10-13-2008, 06:27 AM   #4
LQ Newbie
Registered: Oct 2008
Posts: 12

Original Poster
Rep: Reputation: 0

It's working..
Old 10-13-2008, 06:38 PM   #5
LQ Newbie
Registered: Oct 2008
Posts: 4

Rep: Reputation: 0
Originally Posted by Loser View Post

It's working..
Glad to hear things are going well with your Linux Active Directory integration.

Please let us know how things are going as you continue to use Likewise Open.
Old 10-14-2008, 03:44 AM   #6
LQ Newbie
Registered: Oct 2008
Posts: 12

Original Poster
Rep: Reputation: 0

I didn't use likewise but only openldap ,NSS_LDAP and PAM_LDAP
and every thing good exept when the server is down i can't login even with local account

so any help....
Old 10-14-2008, 03:47 AM   #7
LQ Newbie
Registered: Oct 2008
Posts: 12

Original Poster
Rep: Reputation: 0
here is my configuration


base dc=doremi,dc=com
uri ldap://
ldap_version 3
binddn cn=toto,cn=Users,dc=doremi,dc=com
bindpw 12345678
scope sub
bind_policy soft
ssl no

nss_base_passwd cn=Users,dc=doremi,dc=com?sub
nss_base_shadow cn=Users,dc=doremi,dc=com?sub
nss_base_group cn=Users,dc=doremi,dc=com?sub

nss_map_objectclass posixAccount user
nss_map_objectclass shadowAccount user

nss_map_attribute homeDirectory unixHomeDirectory

nss_map_objectclass posixGroup Group
nss_map_attribute loginShell msSFU30loginShell
nss_map_attribute uniqueMember msSFU30PosixMember
nss_map_attribute cn sAMAccountName

pam_filter objectclass=user

pam_member_attribute msSFU30PosixMember
pam_groupdn cn=linuxGroup,cn=Users,dc=doremi,dc=com
pam_password ad

2- /etc/ldap/ldap.conf

BASE dc=doremi, dc=com
URI ldap://

Now you can make a query to the server to retrieve the database tree by the command ldapsearch that need ldap-util package.

ldapsearch -x -D " cn=Administrator , cn=Users , dc=somecompany , dc=com " –W –s sub -LLL "sAMAccountName=toto"

This command needs you to enter the server administrator password
If you receive a database tree of server without any error you can continue or else you should recheck your configuration

3- /etc/pam.d/ common-account

account required try_first_pass
account sufficient
account sufficient

4- /etc/pam.d/ common-auth

auth required
auth sufficient
auth required nullok_secure try_first_pass

5- /etc/pam.d/ common-passwd

password sufficient
password required nullok obsecure md5

6- /etc/pam.d/ common-session

session sufficient
session required
session required skel=/etc/skel/ umask=0022

7- \usr\local\etc\openldap\ldap.conf

BASE dc=doremi, dc=com
URI ldap://

8- \etc\nsswitch.conf

passwd: files ldap
group: files ldap
shadow: files ldap

hosts: files dns mdns4_minimal [NOTFOUND=return] mdns4
networks: files

protocols: db files
services: db files
ethers: db files
rpc: db files

netgroup: nis



Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Ubuntu 8.04 to SBS 2003 Active Directory authentication problems cliffsur Linux - Newbie 6 10-07-2008 09:01 PM
Linux Authentication to Windows Active Directory carlosinfl Linux - General 1 07-15-2008 11:16 AM
Yet another Samba authentication problem with Windows 2003 Active Directory StAlphonzo Linux - Security 1 05-23-2008 03:16 PM
Yet another Samba authentication problem with Windows 2003 Active Directory StAlphonzo Linux - Server 0 05-23-2008 01:36 PM
RHEL4 authentication to Windows 2003 Active Directory rtkaczyk Linux - Enterprise 40 10-29-2007 08:27 PM

All times are GMT -5. The time now is 01:18 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration