Joining Ubuntu Lucid Lynx to Active Directory
From Jaunty Jackalope version of Ubuntu and now in the lastest release (Ludid, 10.4) it’s very easy to join your Ubuntu to an Active Directory. Where I work we have a huge Active Directory to centralize users, groups, computers and resources (far more than 3000 users).
Here I go to explain how to join an Ubuntu Lucid Lynx (10.04) box to an Active Directory server: Before all take notice that your DNS are pointing to your corporative DNS and the client system-time is synchronized with the server time. To do this just issue the next command:
sudo ntpdate domain.of.your.ad.server.com-
Install the likewise open AD authentication application with the next command: sudo apt-get install likewise-open
-
Register your Ubuntu system:
sudo domainjoin-cli join name.of.jour.domain.com admin-user
(where name.of.your.domain.com is your domain name, and admin-user
is a user account on the domain with permissions to add computers to
it).-
When prompted, enter the password of your adminstrator account. A dialogue box will appear asking for your domain name, enter your AD fully qualified domain name in upper case letters, i.e YOUR.DOMAIN.COM
-
Finally reboot.
Want sudo privileges on a group from AD into your linux boxes? Go to your Active Directory and create a group. I called mine linux-admins, but you can use any group you like. A word of advice though, you’ll have less problems if you don’t use spaces in your group name. Now in your linux clients switch to a local user account with sudo privleges and at the terminal type the command:
sudo visudoAnd append this into the sudoers file add:
%YOUR.DOMAIN.COM\\linux-admins ALL=(ALL) ALLThis tells Ubuntu to allow any user in the linux-admins group on your AD to use sudo privileges on the local machine. At this point all is done so if you want to login into your Ubuntu system from the GUI use username@yourdomain To login over SSH use yourdomain\username As a bonus track and if you understand Galician/Spanish in the next link you can find a deeper manual about how to join this two technologies: https://softwarelibre.usc.es/documents/2