[Samba] How to join RHEL 7 Linux Server to Active Directory Domain

Luc Lalonde luc.lalonde at polymtl.ca
Mon Sep 26 15:07:23 UTC 2022

Hey Rowland,

I'm using Winbind without SSSD successfully on Fedora-36 and 
CentOS-Stream 9.     It's not well documented, but I figured it out:


I've added the pertinent lines in the 'Configuring Kerberos' section:


Look for 'On sone Linux distributions that use MIT Kerberos'.

Most of my systems use SSSD with no issues... but will migrate 
eventually to pure SSSD.


Le 9/26/22 à 05:17, Rowland Penny via samba a écrit :
> I am glad that I am not the only one who has seen through the use of 
> Samba with sssd. I personally have nothing against sssd etc, I just 
> cannot see the point in using it on a Samba domain member, you get the 
> same result (with all the downsides) if you point sssd at an AD DC, 
> you just get authentication. You can get authentication on Debian 
> using kerberos by installing libpam-krb5, but you cannot do this on 
> red-hat any more, they have remove pam-krb5, you have to use sssd.
> To get the fullest benefit of AD on a Unix client, in my opinion, you 
> have to use Samba with winbindd and set it up correctly.
> Rowland 

Luc Lalonde, analyste
Département de génie informatique et génie logiciel:
École polytechnique de MTL
Bureau:  (514) 340-4711 x5049
Cellulaire:  (514) 348-2288
Luc.Lalonde at polymtl.ca

More information about the samba mailing list