Help answer threads with 0 replies.
Go Back > Forums > Linux Forums > Linux - Networking
User Name
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.


  Search this Thread
Old 07-01-2013, 10:35 AM   #1
Registered: Jun 2009
Location: Ambler, PA, United States
Distribution: Debian, Arch
Posts: 67

Rep: Reputation: 16
Debian 7 using Windows Domain authentication


I've been trying to figure out how to do this on and off for the past few days. I'm pretty sure I'm not using the right terminology and it seems like there are so many standards that I'm not even sure what I need to ask. We have a Windows Domain/Active Directory set up here at my work and we obviously have usernames that enable us to log onto any PC in the office using the same set of credentials. We would like to be able to log onto our Debian 7 soon-to-be Subversion and SQL server using those credentials. I vaguely know what LDAP and Kerberos are, the former not seeming to have anything to do with authentication to me, but I keep seeing it pop up everywhere. Plus I see tutorials for PAM vs. NSS and I don't really understand the difference. I would just like anyone who's not an administrator to be a normal 'user' in Debian, and all Domain Administrators to be local administrators on the Debian box. I do have Administrative credentials, also.

Thanks guys, like I said: I'm not really sure what information I even need in order to get this to work, but if anyone is familiar with it, I'll try to find out what I need to. Thank you.
Old 07-01-2013, 01:00 PM   #2
Registered: Apr 2005
Location: Fargo, ND
Distribution: Slackware, CentOS
Posts: 87

Rep: Reputation: 20
You have a couple options.
1) install and enable winbind authentication <- this one is free.
2) install 3rd party software such as Centrify. <- this option will give you the most flexibility.
1 members found this post helpful.
Old 07-01-2013, 03:52 PM   #3
Registered: Jun 2009
Location: Ambler, PA, United States
Distribution: Debian, Arch
Posts: 67

Original Poster
Rep: Reputation: 16
Nice; that was all I needed. A little push into the "winbind" direction, and then I knew what I needed to look for. Got it working now. Thanks!

In case anyone else has this issue:
I had everything configured that I saw online, BUT for some reason I never wrote:
idmap uid = 10000-20000
idmap gid = 10000-20000
These are apparently extremely important lines. I figured they were more of a nice feature rather than a requirement, and that Linux would just designate UIDs and GIDs based on the order it found them. I didn't know it would stop me dead in my tracks if I didn't tell it specifically where to put it.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Samba authentication using a windows domain controller _os_ Linux - Server 4 08-05-2009 05:50 AM
Linux authentication in a windows domain circuit_PT Linux - Server 2 12-17-2007 08:40 AM
local groups - windows domain authentication N_A_J_M Linux - Server 3 07-30-2007 04:31 PM
Windows Domain Authentication with RedHat ED5 ohiodave Linux - Newbie 0 05-24-2007 04:31 PM
Squid authentication from Windows NT4.0 Domain rajeshg Linux - Networking 1 08-31-2004 05:30 AM > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 10:28 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration