Tools for integrating Linux systems with Microsoft Active Directory
Domain Join Made Easy Thanks to Realmd
All of the previously described methods have the disadvantage that they involve a greater or lesser amount of manual work on the clients to join the Windows domain. As of Fedora 18 and Red Hat Enterprise 7, the Red Hat environment offers a tool that lets you easily add a system to a Kerberos realm (a.k.a. domain): realmd. The realmd tool does not just work for Windows domains; you can also use it with FreeIPA domains. The command line is simple:
$ realm join example.com -U Administrator
You won't need to make any additional manual changes to the Kerberos configuration. The realm call ensures that a computer account is automatically created for the system, and a Kerberos principle is also available with a keytab file. At this point, I should mention, however, that realmd is a fairly new tool, and you might experience some complications when using it.
Conclusions
Uniform management of user accounts can be achieved either by Linux clients directly joining a Windows domain or by synchronization or trust relationships between different identity stores. Both methods have their advantages and disadvantages. If Linux clients directly join a Windows domain, I recommend the use of the System Security Services Daemon in combination with the AD provider because this option currently provides the most stable and most efficient solution.
Infos
- Active Directory Domain Services: http://msdn.microsoft.com/en-us/library/aa362244%28v=vs.85%29.aspx
« Previous 1 2
Buy this article as PDF
(incl. VAT)
Buy Linux Magazine
US / Canada
UK / Australia
Direct Download
Read full article as PDF:
Price $2.95
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Find SysAdmin Jobs
News
-
Linux Mint 21.1 Enters Beta Status
With a new version of the Cinnamon Desktop, Linux Mint 21.1 has plenty to offer.
-
4MLinux 41.0 Now Stable and Ready for Use
The developers behind 4MLinux have changed the status of 41.0 to STABLE, which means it's ready for prime time.
-
Xfce 4.18 Coming Soon and Offers Subtle Improvements
The Xfce team has announced the release date of the next iteration of the desktop, which includes a good number of features to polish the fan-favorite Linux UI.
-
Orange Pi Board Has Arch-Based Linux Distribution in the Works
The developers of the Orange Pi board are planning to release an Arch-based Linux distribution available for its hardware as an alternative to Orange Pi OS.
-
Alpine Linux 3.17 Now Available to the General Public
The developers of Alpine Linux have officially announced the release of the latest version of the security-focused Linux distribution.
-
The New StarFighter Linux Laptop Now Available for Preorder
A new, completely customizable Linux laptop is now available to preorder from Star Labs.
-
Critical Escalation Vulnerability Found in the Linux Kernel
A new local privilege escalation vulnerability has been discovered in the Linux kernel and users are encouraged to upgrade/patch immediately.
-
AlmaLinux 8.7 Now Available
The developers of AlmaLinux have released the latest version of the OS, named Stone Smilodon, to the general public.
-
New Arch-Based Linux Distribution Aims to be Beginner-Friendly
CachyOS has been created to serve as a Linux distribution for everyone, even while being based on the more complex Arch Linux.
-
elementary OS 7 Getting Closer to Release
The team behind elementary OS has announced they are now focused on putting the finishing touches on the next major release of the Linux distribution.