[Samba] How to join RHEL 7 Linux Server to Active Directory Domain
Luc Lalonde
luc.lalonde at polymtl.ca
Mon Sep 26 15:07:23 UTC 2022
Hey Rowland,
I'm using Winbind without SSSD successfully on Fedora-36 and
CentOS-Stream 9. It's not well documented, but I figured it out:
https://wiki.samba.org/index.php/Setting_up_Samba_as_a_Domain_Member
I've added the pertinent lines in the 'Configuring Kerberos' section:
https://wiki.samba.org/index.php/Setting_up_Samba_as_a_Domain_Member
Look for 'On sone Linux distributions that use MIT Kerberos'.
Most of my systems use SSSD with no issues... but will migrate
eventually to pure SSSD.
Bye.
Le 9/26/22 à 05:17, Rowland Penny via samba a écrit :
> I am glad that I am not the only one who has seen through the use of
> Samba with sssd. I personally have nothing against sssd etc, I just
> cannot see the point in using it on a Samba domain member, you get the
> same result (with all the downsides) if you point sssd at an AD DC,
> you just get authentication. You can get authentication on Debian
> using kerberos by installing libpam-krb5, but you cannot do this on
> red-hat any more, they have remove pam-krb5, you have to use sssd.
>
> To get the fullest benefit of AD on a Unix client, in my opinion, you
> have to use Samba with winbindd and set it up correctly.
>
> Rowland
--
Luc Lalonde, analyste
-----------------------------
Département de génie informatique et génie logiciel:
École polytechnique de MTL
Bureau: (514) 340-4711 x5049
Cellulaire: (514) 348-2288
Luc.Lalonde at polymtl.ca
More information about the samba
mailing list