From Jaunty Jackalope version of Ubuntu and now in the lastest release (Ludid, 10.4) it’s very easy to join your Ubuntu to an Active Directory. Where I work we have a huge Active Directory to centralize users, groups, computers and resources (far more than 3000 users).
Here I go to explain how to join an Ubuntu Lucid Lynx (10.04) box to an Active Directory server:
Before all take notice that your DNS are pointing to your corporative DNS and the client system-time is synchronized with the server time. To do this just issue the next command:
sudo ntpdate domain.of.your.ad.server.com- Install the likewise open AD authentication application with the next command: sudo apt-get install likewise-open
- Register your Ubuntu system:
sudo domainjoin-cli join name.of.jour.domain.com admin-user(where name.of.your.domain.com is your domain name, and admin-user is a user account on the domain with permissions to add computers to it).
- When prompted, enter the password of your adminstrator account. A dialogue box will appear asking for your domain name, enter your AD fully qualified domain name in upper case letters, i.e YOUR.DOMAIN.COM
- Finally reboot.
Want sudo privileges on a group from AD into your linux boxes? Go to your Active Directory and create a group. I called mine linux-admins, but you can use any group you like. A word of advice though, you’ll have less problems if you don’t use spaces in your group name.
Now in your linux clients switch to a local user account with sudo privleges and at the terminal type the command:
sudo visudoAnd append this into the sudoers file add:
%YOUR.DOMAIN.COM\\linux-admins ALL=(ALL) ALLThis tells Ubuntu to allow any user in the linux-admins group on your AD to use sudo privileges on the local machine.
At this point all is done so if you want to login into your Ubuntu system from the GUI use username@yourdomain
To login over SSH use yourdomain\username
As a bonus track and if you understand Galician/Spanish in the next link you can find a deeper manual about how to join this two technologies: https://softwarelibre.usc.es/documents/2
[...] Si nuestro entorno utiliza los popularísimos dominos de Windows Server para gestionar los usuarios, podemos añadir integración al dominio de Windows para que los usuarios puedan utilizar sus credenciales del dominio para acceder al sistema. En el caso que nos ocupa, aquí explican como usar likewise-open para realizar esta tarea en muy pocos pasos en Ubuntu. [...]
Write on September 2nd, 2010 at 7:04 pm
I’ve recently started a blog, the information you provide on this site has helped me tremendously. Thank you for all of your time & work.
Write on September 21st, 2010 at 7:04 pm
absolutely fabulous. You definitely Zeigerwhatsernamed me! Will definitely check out your site.
Write on September 28th, 2010 at 9:58 pm
Pretty nice post. I just stumbled upon your blog and wanted to say that I have really enjoyed browsing your blog posts. In any case I’ll be subscribing to your feed and I hope you write again soon!
Write on September 29th, 2010 at 7:41 pm
Thank you for your whole work on this web page. Gloria take interest in participating in internet research and it’s really easy to see why. A number of us learn all of the lively method you provide very important ideas by means of the web blog and as well welcome participation from other people on the content while our favorite child has always been starting to learn a lot of things. Take pleasure in the remaining portion of the year. You’re performing a really good job.
Write on February 21st, 2011 at 9:03 am