OpenSUSE Network :: Join Windows Domain
Nov 19, 2010Where can I find information about how to get OpenSUSE 11.3 to join a Windows Domain that uses Kerberos?
View 1 RepliesWhere can I find information about how to get OpenSUSE 11.3 to join a Windows Domain that uses Kerberos?
View 1 RepliesI was wondering if there is any way to enable an MS Windows client that is otherwise unable of joining a domain to join a domain controlled by (open)SUSE? Is that inability only for joining a Windows based domain but a client that runs XP Home Edition or similar domain- incapable version of Windows could join a domain if it was controlled by Linux?Pardon my newbie style, but answer doesn't have to be detailed step-by-step, just yes/no answer with some pointers would do. I am not new to linux but new to network services... search engines weren't friendly when asked this question at the search bar...
View 2 Replies View RelatedI have too many problems to join my OpenSuSE 11.2 with Samba 3.5.4 in a Windows 2008 Active directory Forest (MYDOMAIN.LOCAL). I have updated Samba to 3.5.4 after read that default 11.2 version have too many bugs. Now, when I try to join the Domain MYDOMAIN.LOCAL via yast i have only an undebuggable error "unknown error". For yast, my Suse is joined but i'm unable to authenticate, i can't see "MYDOMAIN.LOCAL" at KDM login and if i try to lookup forest i have this error:
Code:
wbinfo -u
Error looking up domain users
but i'm able to retrive ticket via kinit
Code:
# kinit Administrator
Password for Administrator@MYDOMAIN.LOCAL:
[Code]...
have you a samba version tested against Active Directory 2008? can you link me the repository or help me to solve this?
I've got a home server running Ubuntu Server 9.04 and several machines running Ubuntu Desktop (9.04 and 8.04) and Windows (XP, Vista and 7). Now what I want to do is to create a domain and directory server similar in function to Windows Server w/ AD and join my other machines to the domain, but am not sure where to start. I already have file shares with Samba but now I want to setup a domain.
View 3 Replies View RelatedI am starting a MCSE course and part of it is to create and configure a domain etc etc I have done this and all my windows XP and 7 machines on my LAN are now functioning as part of the domain just great.
Unfortuntely, I have several Open suse machines which are currently not part of the domain yet (they are in a basic Workgroup).
get these computers onto the domain so that a user can log on using their domain credentials and I can apply security policies and what not?
I have 15 or so debian lenny machines, and a xen server that I would like to join to the windows 2003 AD domain controller. The main goal is I would like the windows / linux user names and passwords to be the same on each system. Only 10 or so users need access to the machines but the passwords sometimes are different. How should I go about accomplishing this ?
I was told that openldap may be a solution. But from what I've read about it sounds like its just a mimic or window AD and doesnt sync with it, at least natively ?
I've installed Ubuntu 9.10 in my office desktop. as a newbie in the world of linux, i really do not know much about it. I want to join my desktop in our domain. i already have the ip addresses of the DNS servers but i dunno where to put it. i've installed likewise open and try to join the domain but it displays the following errors: Manual Configuration Required:
The configuration stage 'open ports to DC' cannot be completed automatically. Please manually perform the following steps and rerun the domain join: Some required ports on the domain controller could not be contacted. Please update your firewall settings to ensure that the following ports are open to 'MARVEL2.LBPNET':
88 UDP
389 UDP
464 UDP
445 TCP
How to join ubuntu computer to a windows domain ?
View 3 Replies View RelatedI am new to Debian Linux and I have just installed the software. How can I join the computer to a Windows domain? How can I configure the network?
View 1 Replies View RelatedOnce I setup winbind, samba, and krb5, and I attempt to join the machine to the domain, I get an error message as follows:
net ads join -U user@domain
Failed to join domain: failed to lookup DC info for domain 'XXX.COM' over rpc: Duplicate name on network.
How can I correct this?
We've been running samba on linux for a while and everything was fine. All of a sudden when you add new clients to the domain you get the error message :Logon Failure:unknown user name or bad password. This to me seems like a windows error message and not a samba error. When you remove an existing machine (ie on domain) and then try to rejoin it to the domain you fail.
View 4 Replies View Relatedis it possible to join a Fedora box to a Windows Domain. Will the box be automatically added in DNS?How do I configure Fedora afterwards so I can login with a domain user on the box?
View 1 Replies View RelatedI've been configuring a PDC using samba I used this tutorial url as reference. It seems all went well during the installation and configuration not until when I try to join a windows machine to the domain.
Scenario: When the authentication dialog box prompts the username and password of the domain administrator. I supply root as username and its corresponding password. Then I will prompt an error "The user name could not be found. But, I have noticed that when I supply a wrong password of root the it will prompt "Login failure: unknown user name or bad password. It seems that the windows machine was able to recognize the account somehow.
I'm having a problem getting likewise to connect to a Windows 2008 R2 server on our network.
[code]....
Error: Lsass Error [code 0x00080047] 9502 (0x251E) DNS_ERROR_BAD_PACKET - A bad packet was received from a DNS server. Potentially the requested address does not exist. I have already read up on this a little bit. Both servers are within a minute of each other, so I am not concerned about server timing. I am not sure where to go from this point. Everything I have read seems to indicate that this should "just work".
I'm trying in the company where I work to persuade my co-partners to move slowly into the world of linux, but because everything are set up on Windows is quite difficult. Though I can install at least in one PC openSuse or Ubuntu (I prefer openSuse), but the problem is that I have to find a way to make the authentication to a Windows Domain, which is running Windows Server 2003.
How is this possible? Is this procedure painless or I have to read a lot of staffs in order to make it work? I would be obliged if you could give me some steps on how to do it. I can't stand windows any more
I have sucessfully joined my machine to Windows Active Directory (it wasn't all that complicated ). I was wondering where the uid information for users that login is located and managed? The reason I ask is because we are going to set up a separate NFS server and NFS relies on the uids of the users. I know there are numerous ways I can view the uid for a user (through the use of the id <username> command, do an ls on the /home directory displaying the uid instead of the translated name, etc), but is there a way to have this readily available (almost as the /etc/passwd file is)?
View 1 Replies View RelatedAt home I am using a Windows Server 2003 as Domain controller with Active Directory. My "client" computers are all currently running Windows XP. They all require CONTROL-ALT-DELETE and the user to enter their credentials before they will allow logon. Shared files reside on various other Server 2003 machines and have restrictions on so only specific users can access certain resources.
For example, I have the family finances and other important documents in a share named 'Private-Files', only members of the 'PrivateFiles' global group have access. Likewise, I have my movies sorted into their appropriate age categories - after all, I don't want my 5 year old son accidentally watching Aliens! So this all works but as you can imagine, the copies of Windows XP and Server 2003 are far from legitimate. I want to go legal and the only real way I can afford to do this is to switch over to Linux.
I have used Suse, Ubuntu, Fedora and a few other distros in the past and found that for ease of use, I want to use Ubuntu on the desktop computers but power the servers with Open Suse. The problem is, although I can install the OSes, I have no idea where to proceed from there - for example, how do I create a Domain in Suse? Where and how do I create domain users and groups? How do I set permissions on shares for the domain users?
I installed 11.2 a couple weeks ago on a machine at work, and thru YaST connected to the domain. I was then able to add a printer, and thru nautilis browse to windows computers with shares. Something changed about a week ago and I've played with everything I can think of, read lots of tutorials, and still can't make it work. I'm about ready to format and reinstall from scratch and try again, as I'm out of ideas.
So the way it was before, in nautilus if I clicked on network it would give me a list of all sorts of computers on my domain, and if I clicked on one of the windows machines it would ask me my username/password, and after I entered them, I'd be in.
Now, in nautlis if I click on network it shows me "windows network" and if I click on that it gives me a list of all sorts of workgroups and domains (or something like that). If I click on the one with my domain name, it asks username/password but it doesnt work.
I've tried leaving the domain and rejoining, I've enabled and disabled kerberos, ldap, samba, everything I can think of - although I dont think I had to change those at all from default the first time.
I dont know what I could have done between when it worked and now. I did allow some installation of updates. Shortly thereafter I noticed ssh no longer worked, and after playing with it forever I couldnt make it work, I uninstalled openssh and then reinstalled it from the repository, and it worked again. No idea why it stopped working, but maybe it's related to this domain problem, I dunno.
My main goal at this time is to be able to access windows shares from the linux machine. I don't care if I have to login to linux with my windows domain account or a local account (although all the documentation I've followed said that I should be able to login with a domain username/password too).
guide me to connect the SLED 11 SP1 to KEVIN.org (This is the name of my domain I created) Wich i created on windows server 2008.
View 9 Replies View RelatedI put a Lucid 10.04 box on a Windows AD network. I want it to join the domain. I used likewise-open5_5.0.3991.1-0ubuntu2_i386
I ran
1. sudo apt-get update
2. sudo apt-get install likewise-open
3. sudo domainjoin-cli join fqdn of your domain Administrator
4. sudo update-rc.d likewise-open defaults
5. sudo /etc/init.d/likewise-open start
After step 3, I get
Joining to AD Domain: mydomain dot local
With Computer DNS Name: ubuntu dot mydomain dot local
Administrator(at)MYDOMAIN dot LOCAL's password: [I entered it]
Error: Lsass Error [code 0x00080047]
40286 (0x9D5E) LW_ERROR_LDAP_SERVER_DOWN - Unknown error
Im just a Windows schlep new to Linux. I dont even know where to find things like /etc/nsswitch.conf--winbind, let alone how to edit them.
"You are only allowed to post URLs to other sites after you have made 15 posts or more" It took me an hour to get this to post. I attached a text file without all the spaces and 'dots'.
how can i join linux and mac machine with windows domain?
View 1 Replies View RelatedI have a centos 5 server joined to a win2003 active directory domain. It's a virtual machine, so i had to sync the date (ntpdate) because it was 12 minutes different. It worked, but not ntlm authentication is not working anymore. If i rejoin the domain i get:
net ads join -U administrator@MYDOMAIN.COM
administrator@MYDOMAIN.COM's password:
Failed to set password for machine account (NT_STATUS_DISK_FULL)
Failed to join domain: NT_STATUS_DISK_FULL
I have installed Fedora 11 and all updates. Samba 3.4.1. When join to domain from WinXP box with sp3 show error. The specified network password is not correct.
View 9 Replies View Relatedi have installed RHEL5 on my system.i want to join my system on my organisation s active directory domain.how can i do it?suppose domain name is "abc-xyz"
View 6 Replies View RelatedTutorial for setting up a
domain server, dns server, ldap, mail server, firewall and proxy
with centos and how can I join ubuntu clients to the domain?
I am practising setting up a small network using UBUNTU as a PDC through SAMBA to service xp clients.
I have sucessfully setup DNS on the Ubuntu server using Bind9 and can nslookup from both the client and the server by FQDN and can also ping ipaddress.
I have setup a basic smb.conf file however when I try to add the xp client to the domain I get an error message saying a domain controller for the domain could not be contacted.
I have disabled the firewalls on both the server and the xp client and still get the same error message when trying to join the domain. I've checked my network settings on the client, its set to use a static IP address and the DNS server and WINS server are set as my Ubuntu Samba PDC address.
I haven't been able to see anything odd in the smb.conf file that might cause this issue. I can connect directly to the shares using the samba network account that I created by going to start run and typing in the unc path.
Not sure what the cause of this issue is, I thought it might be a DNS issue on the client. One odd thing I noticed is that when I do nslookup using just the server name and not the FQDN i get a message in dos saying that the default server cannot be found but says that the server name for the [ipadress] cannot be found. It does list the correct ip.
I'm not sure what is causing the problem of stopping my xp client from joining the Ubuntu Samba PDC. I'm using UBUNTU server 10.04.
in searching i never found an article that got it just right. so here it is tried and true..
1. I usually start out assigning myself a static ip address. this is not needed to join but its something I always do.
2. next i set my dns settings in resolve.conf to my local dns server
3. download likewise "apt-get install likewise-open"
4. for kerberos i just leave it blank
5. go to your nsswitch.conf file located in /etc/ and set the hosts to only files and dns
6. now you should stop your networking and start it again so that the dns changes take effect.
7. you are now ready to try and join your domain. "domainjoin-cli join fqdn.of.yourdomain administrator" you can substitute administrator with any admin account
you should now be joined to your domain for adding sudo rights to the "administrator" membership
1. open your sudoers file located in /etc/
2. the following line to the bottom of the file "%DOMAIN\administrators ALL=(ALL) ALL" replace DOMAIN with your domain name. do not use your fqdn. all set. hope you enjoy
Im currently using an english book to setup my samba server, and im having problems understanding it.
I dont want to use root to join clients to the domain; i prefer creating a plain user.
Ok, so, the steps i follow are:
net groupmap add unixgroup=srvadmins ntgroup="Server Admins"
net groupmap add ntgroup="Domain Admins" unixgroup=dmnadmins rid=512 type=d
net rpc rights grant 'ORAServer Admins' seMachineAccountPrivilege
This way, i have a group called srvadmins with permissions to join clients, a group called dmnadmins with permissions to manage users and other permissions, and root.
Now, users: "root", "dmnadmin"(from dmnadmins group) and "srvadmin" (from srvadmins group) can add machines to domain. Root because is root, srvadmin because i granted permissions, and dmnadmin because is admin
So i wonder, why srvadmins group is needed to be granted privileges?
I tryed to lower dmnadmins privileges by revoking semachineaccountprivilege privilege, but didnt worked
net rpc rights revoke 'ORADomain Admins' seMachineAccountPrivilege
looks like its privileges comes from another group and it user managed to add a machine to the domain correctly.
Ok, so, is this really usefull? why do i need 3 kind of users to be able to join to the domain?
I need to bring my Suse 11 server into active directory domain using samba and winbind. Please let me know the procedure how to do this.
View 3 Replies View RelatedI would like to join SLES server to Microsoft Server 2008 Active Directory to enable domain authentication when accessing samba shares. When I run
Code:
net ads join -U administrator
I get the following error
Code:
"Failed to join domain: Improperly formed account name."
I tried the same samba configuration on another server (OpenSuse 11.2) without any problem, so I think it is somehow connected with the Samba version, but I'm not sure. Has anybody experienced this behaviour?
Code:
kinit administrator@MYDOMAIN
the package versions on SLES 10 SP2 (x86_64) are following
Code:
samba-3.0.28-0.5
samba-client-3.0.28-0.5
krb5-1.4.3-19.34
krb5-32bit-1.4.3-19.34
[code]....