Slackware

Slackware and AD.

Hey there, What I need on slackware to join as member an AD domain? I know that I need pam but what else? Thanks in advance Read More

Hey there,
What I need on slackware to join as member an AD domain?

I know that I need pam but what else?

Thanks in advance


Read More

Sending
User Review
0 (0 votes)
Tags

4 Comments

Click here to post a comment

  • You might not need pam. You need to be more specific on what you want.

    If you want file sharing only, you only need to setup samba (and run winbindd), no pam required.

    If you want to be able to ssh to your slackware box using your AD login, then you can pam or nss_ldap.

    If you want apache to auth, you don’t need pam.

    Otherwise, be more specific.

  • The key things:

    1. kerberos. I use MIT kerberos. You’ll need an /etc/krb5.conf file with a few basic entries.
    2. samba.conf with domain information and specifying /etc/krb5.keytab for the machine certificates
    3. “net ads join” working
    4. kinit working, i.e. can get a tgt

    After these steps, then recompiled openssh with kerberos linked in and restart the service. Test that this works externally. “ssh -K someuser@somemachine”

    You may not need pam depending on what you’re doing. Once sshd is accepting connections, you’ll know that you’ve jumped through the basic hoops. You might also want to create a cron job to register the host in DNS at regular intervals. “net ads register dns -P”

    Also, [arch’s wiki](https://wiki.archlinux.org/index.php/Active_Directory_Integration) has another set of basic documentation where there should be some overlap with slackware.