12

Sorry if I am misusing terms here; I actually don't know much about Active Directory and the related technologies. Basically I have a Linux computer and I'd like it (or my user on that computer) to be associated with my user on the Domain, so that I can browse the network and all that stuff windows has.

Is this feasible? What do I need to look into to do something like this?

Frew Schmidt
  • 348

7 Answers7

10

There are three main options:

  • Kerberos plus LDAP - This is a lower-level option where you set up Linux to use Active Directory's underlying protocols yourself. Described in this answer.
  • Samba - Samba is the de facto standard for joining a Linux machine to a Windows domain.
  • Microsoft Windows Services for Unix includes options for serving usernames to Linux / UNIX via NIS and for synchronizing passwords to Linux / UNIX machines. You'd use this if you wanted to do everything possible from Windows or if you had an existing Linux / UNIX infrastructure you wanted to tie to Windows; for most environments, though, one of the other solutions would be better.

There are a few other options available too: Likewise (apparently no longer available), Centrify, SSSD... There's further discussion in this question.

Josh Kelley
  • 992
1

Two ways that I know of. From the linux host you can try this:

root# net ads join -UAdministrator%password

Or you can just create the computer object in active directory.

Like everyone else said, you'll need to add the samba packages to get that to happen.

http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/domain-member.html

CosmicQ
  • 123
0

I'd suggest looking at an excellent public domain package called Samba. It might very well be part of the Linux distribution that you have installed.

mdpc
  • 11,914
0

In order to get all the benefits and security of AD, you'll need a solution involving Kerberos (for authentication) and LDAP (for authorization). There's an excellent tutorial here that I've used in the past and it works amazingly well. It's more complex to implement than just using samba/winbindd, but you'll get the benefit of being able to use the UNIX attributes in AD to manage your linux users, groups, uids, gids, etc.

EEAA
  • 110,608
0

same tips http://www.cyberciti.biz/tips/how-do-i-join-a-windows-2003-active-directory-domain-from-linux-system.html

Rajat
  • 3,349
0

Samba/Likewise is overkill.

Set up pam_krb5, authenticating to the KDC of the AD domain.

Fahad Sadah
  • 1,546
0

To add a Linux machine to an Active Directory domain, you will need:

  • TCP / IP Config: Configure the DNS of the AD as DNS.
  • NTP Config: Configure the NTP server in DC
  • Packages: Install the necessary packages
  • SSSD Configuration: Configure the network authentication service.
  • Verification with the id command

Here is a guide, step by step:

https://www.sysadmit.com/2019/11/linux-anadir-equipo-al-dominio-windows.html

Mark Stowe
  • 1