- Community Home
- >
- Servers and Operating Systems
- >
- HPE ProLiant
- >
- Server Management - Systems Insight Manager
- >
- Re: HP SIM on Linux - is AD authentication possibl...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-14-2008 06:11 AM
тАО08-14-2008 06:11 AM
HP SIM on Linux - is AD authentication possible?
Just looking in the help file and it says "(Optional) In the Domain (Windows┬о domain for sign-in name) field, enter the Windows domain name for the login name if the CMS is running a Windows operating system. If left blank, the CMS system name is used as the domain."
I'm presuming this means I can't authenticate users or groups against AD from a Linux platform? I've already added a domain controller in the directory services section but that didn't help.
Am I looking for a feature that doesn't exist or is this possible?
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-13-2008 04:12 AM
тАО11-13-2008 04:12 AM
Re: HP SIM on Linux - is AD authentication possible?
Using HPSIM 5.2 SP2 on RHEL5-64bit
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-13-2008 06:05 AM
тАО11-13-2008 06:05 AM
Re: HP SIM on Linux - is AD authentication possible?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-18-2009 01:17 PM
тАО05-18-2009 01:17 PM
Re: HP SIM on Linux - is AD authentication possible?
The way HPSIM authenticates is through it's own custom pam file in /etc/pam.d. This then uses modules similar to other services and applications to authenticate. Sometimes services just use "login" but in this case, HPSIM had it's own: mxpamauthrealm
with the contents:
auth required /lib/security/pam_unix.so
account required /lib/security/pam_unix.so
session required /lib/security/pam_unix.so
Which gave just basic authentication built in with the OS.
I just copied the contents of /etc/pam.d/login (which was customized by our deployment for Active Directory) and, wala! Without even restarting HPSIM I was able to login with my AD account! Woohoo!
Of course, I'm going to trim down that file a bit tomorrow with some help from our AD administrator, but it's a good start.
hope this helps!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-19-2011 06:20 AM
тАО05-19-2011 06:20 AM
Re: HP SIM on Linux - is AD authentication possible?
Did the changes work for both Windows AD and other LDAP servers as well ?
- Tags:
- LDAP
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО01-24-2012 12:39 PM
тАО01-24-2012 12:39 PM
Re: HP SIM on Linux - is AD authentication possible?
Mark or Ash,
Could you share the detail entries that were added to both the pam file and HP SIM mxpamauthrealm files?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО10-23-2012 09:30 AM
тАО10-23-2012 09:30 AM
Re: HP SIM on Linux - is AD authentication possible?
I'm running HP SIM on CentOS v6.2 64bit. Trying to authenticate users through our companies AD. I setup the directory server configuration and the connection tests OK. I then created a user with all rights. I can't login as the user and the log entry at /var/opt/mx/logs/mxdomainmgr.0.log says "Authentication failed" "Permission denied". I've tried every combination of DOMAIN\username I can think of and still no access.
What am I missing?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-19-2014 06:52 AM
тАО11-19-2014 06:52 AM
Re: HP SIM on Linux - is AD authentication possible?
Hi. Long time since last post in this thread but i have been having problems with this also so i thought i post a solution.
I finally managed to logon with AD account. All explained in this post. http://www.theitblog.se/2014/11/19/ldap-hp-sim/
briefly i did this.
1. Install krb5 winbind
2. edit krb, samba, nsswitch configuration files
3. add computer to domain.
4. set mxpamauthrealm to winbind
5. add AD group to HP-sim.
6. reboot and login with AD account.