Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- sudo apt -y install realmd sssd sssd-tools libnss-sss libpam-sss adcli samba-common-bin oddjob oddjob-mkhomedir packagekit
- sudo hostnamectl set-hostname SETNEWNAMEFORYOURMACHINE
- realm join test.local
- sudo nano /etc/pam.d/common-session
- ------------------------
- pam_mkhomedir.so skel=/etc/skel umask=077
- ------------------------
- if you want to omit domain name part for the username – go to
- sudo nano
- /etc/sssd/sssd.conf
- ---------------------------------------------
- use_fully_qualified_names = False
- ---------------------------------------------
- Save the file and reboot sssd
- For XRDP support add the last to lines of this sample sssd.conf:
- [sssd]
- domains = test.local
- config_file_version = 2
- services = nss, pam
- [domain/test.local]
- default_shell = /bin/bash
- krb5_store_password_if_offline = True
- cache_credentials = True
- krb5_realm = test.local
- realmd_tags = manages-system joined-with-adcli
- id_provider = ad
- fallback_homedir = /home/%u@%d
- ad_domain = monarch.de.local
- use_fully_qualified_names = True
- ldap_id_mapping = True
- access_provider = ad
- ad_gpo_access_control = enforcing
- ad_gpo_map_remote_interactive = +xrdp-sesman
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
