- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - Linux
- >
- Authenticating SLES9 vs. Windows AD
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-05-2006 01:16 AM
тАО04-05-2006 01:16 AM
Authenticating SLES9 vs. Windows AD
I've tried this in suseforums.net, so far with very little success in responses and searches there, so I'll try here too.
I have SUSE Linux Enterprise 9 on an HP DL360 G3. This is a lone linux server amongst many HP/Windows ones. What I'd like to do is have the ability to log onto this SLES9 box with local (linux) credentials I've created (done already), or with AD creds from a given domain.
I don't want the SLES sever to be an authenticating source, I don't want it to run AD, etc. I already have a test environment with AD/Win2003. I simply want to use an account there to log onto this server. (I stress this point, because almost all of my searches thus far for this have yielded results for running SLES 9 as the AD type server, or doing much much more than my humble goal).
So far I have installed though YaST:
pam_krb5
samba
samba-doc
samba-pdb
samba-winbind
I have also configured through YaST:
LDAP Client
Samba Client
Samba Server (however, I cannot seem to add my AD domain in the Trusted Domains section!)
As it stands now, I think it's partially working. When I try to login as DOMAIN\testuser, I get a "critical error" however. (As opposed to a login failed, if I attempt a bogus login).
In looking at /var/log/messages, I see:
"pam_winbind: user DOMAIN\testuser granted access
kdm: getpwnam(DOMAIN\testuser failed".
That last piece seems to be the key, but I'm stuck in my troubleshooting so far.
Any help? Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-05-2006 02:13 AM
тАО04-05-2006 02:13 AM
Re: Authenticating SLES9 vs. Windows AD
Suggestion:
Has the machine done a samba command called:
net join
This needs to be done to get integration.
The machine may also need a "machine account" on the ADS system so that its allowed to talk and play well with other machines.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-05-2006 02:19 AM
тАО04-05-2006 02:19 AM
Re: Authenticating SLES9 vs. Windows AD
Hmm, the SLES9 machine itself appears in AD, and I can get to it from my windows desktop with \\machinename.
Do you think that is sufficient? I have not run any net join command manually, although perhaps something I configured through YaST did this for me...?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-05-2006 02:21 AM
тАО04-05-2006 02:21 AM
Re: Authenticating SLES9 vs. Windows AD
(Not sure what to use as creds, I'm goofing with that now).
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-05-2006 03:01 AM
тАО04-05-2006 03:01 AM
Re: Authenticating SLES9 vs. Windows AD
The "help" on the side of this GUI says that if this is an NT domain, YaST will allow this host to join the domain.
So I THINK I'm on the domain already, but something sure isn't correct.