Windows AD users authenticate to Linux


 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users Windows AD users authenticate to Linux
# 1  
Old 06-03-2017
Windows AD users authenticate to Linux

Hello folks, Please advise me what is the best way to authenticate Windows AD users against Linux machines.

Currently I am going to take a look of Vintela Authentication Services and please let me know if you have experience with VIntela.
Thanks in advance
# 2  
Old 06-03-2017
Windows AD has builtin in kerberos and LDAP

You can use that to authenticate users to linux machine via SSH (host key) or your web service (HTTP key), using web server (for instance apache mod_auth_kerb).
You will need to install kerberos libs and client package (names will depend on your distribution) on your linux box.

Process involves creating a user on AD, generating kerberos keytab on AD for that user, copying the keytab file to your linux server and configuring /etc/krb5.conf

This can be configured additionally with AD LDAP to avoid creating users on the machine, otherwise a user must be created.
Without password will work and user will not be able to set his password via passwd command if it is blanked.

Hope that helps
Regards
Peasant.
Login or Register to Ask a Question

Previous Thread | Next Thread

7 More Discussions You Might Find Interesting

1. UNIX for Beginners Questions & Answers

Seen Windows pc, having all the features of Linux, could exe, read and edit save like windows

Hi, totally new to linux base using windows when started learning and using computers. but i remember that one pc was there , look alike windows desktop, but could not do the task as windows just click and open and view edit etc. But, you could do a little differently even saving in and opening... (8 Replies)
Discussion started by: jraju
8 Replies

2. AIX

AIX LDAP client authenticate against Linux Openldap server over TLS/SSL

Hi folks, How can i configure an AIX LDAP client to authenticate against an Linux Openldap server over TLS/SSL? It works like a charm without TLS/SSL. i would like to have SSL encrypted communication for ldap (secldapclntd) and ldapsearch etc. while accepting every kind of certificate/CA.... (6 Replies)
Discussion started by: paco699
6 Replies

3. Proxy Server

Solaris 11.1 login authenticate with windows active directory

Hi, is that possible to login to solaris 11.1 authenticate with windows active directory? the user id is created in the windows active directory. Environment: Solaris 11.1 Windows 2012 Active Directory (3 Replies)
Discussion started by: freshmeat
3 Replies

4. IP Networking

Linux Client To Authenticate using TACACS

I have customer who controls access to the internet via TACACS server, basically a PIX firewall uses authentication from the TACACS to say if traffic is allowed to pass out of the gateway. I can't find anything on how to configure a linux client of TACACS authentication only how to set up a linux... (1 Reply)
Discussion started by: metallica1973
1 Replies

5. Linux

Using squid_db_auth to authenticate squid users against SQLite

Hi guys, Can we use squid_db_auth to authenticate squid users against SQLite database? I googled but all configurations are in MySQL. (0 Replies)
Discussion started by: majid.merkava
0 Replies

6. AIX

Authenticate AIX users from MS Active Directory

First, let me start off saying this is not spam. This is me trying to help out other AIX Admins with MS AD servers. If it is not applicable to you, someone else will find it useful. As long as the "KDC" service is running on your AD server, these steps should work. There should be no... (3 Replies)
Discussion started by: kah00na
3 Replies

7. UNIX for Dummies Questions & Answers

UNIX help for Windows users?

Is there any sort of documentation that translates windows commands into linux commands? ...just the basic stuff that you would do on your win PC translated to linux? For example in windows to configure your network card you would... Settings > Control Panel > Network Connections > Local... (3 Replies)
Discussion started by: TINO
3 Replies
Login or Register to Ask a Question