Steps to join a linux computer to Active Directory using AD.
Benefits of using SSSD:
Reduced load on authentication servers.
Option for offline authentication
Single user account
Steps:
1)Make sure that both the Active Directory and Linux systems have a properly configured environment
2)
On the Linux client, add the Active Directory domain to the client's DNS configuration so that it can resolve the domain's SRV records.
Search adserver.example.com
Nameserver 192.168.1.1
3)set up the linux system as an AD client and enroll it within the AD domain.
1) set up the kerberos to use AD realm
1) vim /etc/krb5.conf
2) configure the logging and libdefaulrs section
Benefits of using SSSD:
Reduced load on authentication servers.
Option for offline authentication
Single user account
Steps:
1)Make sure that both the Active Directory and Linux systems have a properly configured environment
2)
On the Linux client, add the Active Directory domain to the client's DNS configuration so that it can resolve the domain's SRV records.
Search adserver.example.com
Nameserver 192.168.1.1
3)set up the linux system as an AD client and enroll it within the AD domain.
1) set up the kerberos to use AD realm
1) vim /etc/krb5.conf
2) configure the logging and libdefaulrs section
[Logging]
FILE: /var/logs/krb5libs.log
[Libdefaults]
Default_realm=example.com
Dns_lookup_realm=true
Dns_lookup_kdc = true
Ticket_lifetime=24h
Renew_lifetime=7d
Rdns = false
Forwardable = yes
FILE: /var/logs/krb5libs.log
[Libdefaults]
Default_realm=example.com
Dns_lookup_realm=true
Dns_lookup_kdc = true
Ticket_lifetime=24h
Renew_lifetime=7d
Rdns = false
Forwardable = yes
No comments:
Post a Comment