LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 10-13-2008, 04:01 AM   #1
Loser
LQ Newbie
 
Registered: Oct 2008
Posts: 12

Rep: Reputation: 0
Unhappy UBUNTU authentication against windows active directory


help.....

I am new in linux and i need some help to configure my ubuntu 8.04 hardy to authenticate against windows active directory (win 2003 server)

any help......
 
Old 10-13-2008, 05:21 AM   #2
odcheck
Member
 
Registered: Aug 2006
Distribution: Fedora, CentOS, RHEL, Debian
Posts: 978

Rep: Reputation: 30
Use "likewise" easy going.
 
Old 10-13-2008, 05:24 AM   #3
Plastic Freddie
LQ Newbie
 
Registered: Jan 2007
Location: Shrewsbury, UK.
Distribution: Ubuntu - for an easy life. Originally used heavily-customised Arch. Also dabbled in SLES.
Posts: 6

Rep: Reputation: 1
There's a couple of places on the Ubuntu site you ought to look at.

https://help.ubuntu.com/community/Ac...ryWinbindHowto
https://help.ubuntu.com/community/Samba/Kerberos

Also, some useful threads on linuxquestions.org:

http://www.linuxquestions.org/questi...oblems-671769/
http://www.linuxquestions.org/questi...cation-363721/ (although this one is SUSE-centric)

HTH...
 
Old 10-13-2008, 05:27 AM   #4
Loser
LQ Newbie
 
Registered: Oct 2008
Posts: 12

Original Poster
Rep: Reputation: 0
Thanx.....

It's working..
 
Old 10-13-2008, 05:38 PM   #5
likeWiseGuy
LQ Newbie
 
Registered: Oct 2008
Posts: 4

Rep: Reputation: 0
Quote:
Originally Posted by Loser View Post
Thanx.....

It's working..
Glad to hear things are going well with your Linux Active Directory integration.

Please let us know how things are going as you continue to use Likewise Open.
 
Old 10-14-2008, 02:44 AM   #6
Loser
LQ Newbie
 
Registered: Oct 2008
Posts: 12

Original Poster
Rep: Reputation: 0
hello....

I didn't use likewise but only openldap ,NSS_LDAP and PAM_LDAP
and every thing good exept when the server is down i can't login even with local account

so any help....
 
Old 10-14-2008, 02:47 AM   #7
Loser
LQ Newbie
 
Registered: Oct 2008
Posts: 12

Original Poster
Rep: Reputation: 0
here is my configuration


1-/etc/ldap.conf

host 192.168.0.44
base dc=doremi,dc=com
uri ldap://192.168.0.44
ldap_version 3
binddn cn=toto,cn=Users,dc=doremi,dc=com
bindpw 12345678
scope sub
bind_policy soft
ssl no

nss_base_passwd cn=Users,dc=doremi,dc=com?sub
nss_base_shadow cn=Users,dc=doremi,dc=com?sub
nss_base_group cn=Users,dc=doremi,dc=com?sub

nss_map_objectclass posixAccount user
nss_map_objectclass shadowAccount user


nss_map_attribute homeDirectory unixHomeDirectory

nss_map_objectclass posixGroup Group
nss_map_attribute loginShell msSFU30loginShell
nss_map_attribute uniqueMember msSFU30PosixMember
nss_map_attribute cn sAMAccountName

pam_filter objectclass=user

pam_member_attribute msSFU30PosixMember
pam_groupdn cn=linuxGroup,cn=Users,dc=doremi,dc=com
pam_password ad

2- /etc/ldap/ldap.conf

BASE dc=doremi, dc=com
URI ldap://192.168.0.44
HOST 192.168.0.44

Now you can make a query to the server to retrieve the database tree by the command ldapsearch that need ldap-util package.

ldapsearch -x -D " cn=Administrator , cn=Users , dc=somecompany , dc=com " –W –s sub -LLL "sAMAccountName=toto"

This command needs you to enter the server administrator password
If you receive a database tree of server without any error you can continue or else you should recheck your configuration


3- /etc/pam.d/ common-account

account required pam_unix.so try_first_pass
account sufficient pam_ldap.so
account sufficient pam_deny.so

4- /etc/pam.d/ common-auth

auth required pam_env.so
auth sufficient pam_ldap.so
auth required pam_unix.so nullok_secure try_first_pass


5- /etc/pam.d/ common-passwd

password sufficient pam_ldap.so
password required pam_unix.so nullok obsecure md5

6- /etc/pam.d/ common-session

session sufficient pam_ldap.so
session required pam_unix.so
session required pam_mkhomedir.so skel=/etc/skel/ umask=0022

7- \usr\local\etc\openldap\ldap.conf

BASE dc=doremi, dc=com
URI ldap://192.168.0.44

8- \etc\nsswitch.conf

passwd: files ldap
group: files ldap
shadow: files ldap

hosts: files dns mdns4_minimal [NOTFOUND=return] mdns4
networks: files

protocols: db files
services: db files
ethers: db files
rpc: db files

netgroup: nis
 
  


Reply

Tags
likewiseopen


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Ubuntu 8.04 to SBS 2003 Active Directory authentication problems cliffsur Linux - Newbie 6 10-07-2008 08:01 PM
Linux Authentication to Windows Active Directory carlosinfl Linux - General 1 07-15-2008 10:16 AM
Yet another Samba authentication problem with Windows 2003 Active Directory StAlphonzo Linux - Security 1 05-23-2008 02:16 PM
Yet another Samba authentication problem with Windows 2003 Active Directory StAlphonzo Linux - Server 0 05-23-2008 12:36 PM
RHEL4 authentication to Windows 2003 Active Directory rtkaczyk Linux - Enterprise 40 10-29-2007 07:27 PM


All times are GMT -5. The time now is 04:29 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration