Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Domain Logon

Status
Not open for further replies.
adiMasher

adiMasher

Programmer
Aug 31, 2001
144
0
0
US
I have a W2K Active Directory controlled internal DNS which is great for all the windows boxes that are on it. However we have a wide selection of unix platforms that we would also like to have logon capabilities to the domain such that when a new user is added to Active Directory, they are automatically able to log on to any of the unix boxes as well.

Is there a way to set this up in the startup files and/or the login scripts that authenticate across the network domain in order to gain access.

Thanks,
Martin
 
Sort by date Sort by votes
I don't recall exactly right now but there are tools availbale for this. You can also check SAMBA out though I'm not sure if it will go as far as you want it to.

Regards.
 
Upvote 0 Downvote
The Samba route is an interesting one that would be worth looking into. It may be possible with the latest release of Samba to set it up as a BDC, and then to amend the /etc/pam.d/login file to authenticate against Samba.

An alternative route...

As I understand it, Active Directory is basically "Microsoft does LDAP".

Linux uses PAM to do login authentication.

PAM (at least on the RedHat 7.2 box I just checked) has a pam_ldap module in /lib/security.

So... putting all of this together it may be possible to use the LDAP support in PAM to authenticate logins against an Active Directory server.

There are a couple of resources that may help with this:

This appears to be the home of the PAM LDAP module.

This is the Linux-PAM system admin guide. Pay special attention to the "If something goes wrong" page :)

I'd have tried setting this up myself, but unfortunately I don't have an Active Directory installation to test against. Please post back here if you have any success.

Good luck!
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Mysterchr
  • Locked
  • Question
Renaming a domain
Replies
1
Views
23
Provogeek
Provogeek
MoreFeo
  • Locked
  • Question
CIFS client doesn't work with domain users (works with local users)
Replies
2
Views
57
MoreFeo
MoreFeo
Zathros
  • Locked
  • Question
Printing with cups to a shared printer on domain server
Replies
1
Views
19
Annihilannic
Annihilannic
scrocca
  • Locked
  • Question
Logon Notification
Replies
1
Views
20
irixfan
irixfan
ruzwan
  • Locked
  • Question
domain panic
Replies
0
Views
11
ruzwan
ruzwan

Part and Inventory Search

Sponsor

Back
Top