Authenticate with AD User
2011/08/05 |
Authenticate to Linux System with Active Directory Domain User.
Therefore, Active Directory Domain Server is required to be running on your LAN.
And also it needs the time on Linux Server and Windows Server syncs.
|
|
[1] | Install module for Kerberos Auth. |
[root@dlp ~]#
yum -y install pam_krb5 fprintd-pam # set Kerberos auth # specify AD server's hostname or IP address for krb5kdc=xxx # specify Active Directory's domain name for krb5realm=xxx
[root@dlp ~]#
authconfig --enablekrb5 --krb5kdc=10.0.0.150 --krb5realm=E-FD3S.SRV.WORLD --update # create a user that has same name with an Active Directory User # it does not need to set password because it is controled on AD [root@dlp ~]# useradd aduser [root@dlp ~]# # logout
logout
CentOS Linux release 6.0 (Final)
dlp.srv.world login: Kernel 2.6.32-71.29.1.el6.x86_64 on an x86_64 aduser # Active Directory domain user Password: # Active Directory user's password [aduser@dlp ~]$ # just logined |