This article will show you how to join your Linux server into the Active Directory domain, how to integrate the Active Directory user accounts into the Linux user accounts and how to authenticate users in Active Directory using Winbind, a component of Samba.
Setup and Configure Winbind
1. Click System, select Administration and click Authentication. This will launch the Authentication Configuration window.
2. Check the Enable Winbind Support and click Configure Winbind. This will launch the Winbind Settings window.
4. Click Join Winbind Domain. You will be asked to save your changes, click Save. In the Joining Winbind Domain window, fill in the Domain Administrator and Password. Click Ok when you are done. Click Ok again to close the Winbind Settings window.
6. Click the Options tab and check the Local authorization is sufficient for local users. Click Ok when you are done.
winbind use default domain = yes
winbind enum users = yes
winbind enum groups = yes
obey pam restrictions = yes
allow trusted domains = no
idmap backend = idmap_rid:acme=16777216-33554431
8. Create the folder that will contain the home directory of the Active Directory users. From the terminal window, type in the commands below.
session required pam_oddjob_mkhomedir.so skel=/etc/skel/ umask=0022
10. Restart the winbind service and start the oddjobd service. Learn how to start and restart services here.
Test the Active Directory Integration
3. Finally, type in getent passwd. You should see the Linux system accounts along with the Active Directory user accounts.
Active Directory Single Sign On. Use Identity Management for Unix to control access on a per user account basis.