Well try this before installing likewise-open
Open Terminal
ping domain e.g. domain.com
ping doimain controller e.g. domaincontroller.domain.com
ping domain controller IP Address 192.168.X.X
For this Process I used ¨root user¨
$ sudo su
gedit /etc/hosts
Put this below the first two lines:
IPADDRESSOFDCSERVER SERVERNAME
192.168.0.1 Ubuntuserver1
gedit /etc/nsswitch.conf
look for line that says hosts and comment is out with ¨#¨
then add the following line above it:
hosts: files dns mdns4
gedit /etc/resolv.conf
comment out everything with ¨#¨ and add line below
search domain.com
nameserver 192.168.X.X (IP ADDRESS OF DOMAIN CONTROLLER)
gedit /etc/dhcp3/dhclient.conf
Then add line below the ¨option rfc3442-classless-static-routes code 121 = array of unsigned integer 8;¨
supersede domain-name ¨domain.com¨;
prepend domain-name-servers 192.168.0.2; (IP ADDRESS OF DOMAIN CONTROLLER)
Here I added the user I will be log into the machine with to a two group:
sudo visudo
under #User privilege specification: put domain user
DOMAIN\username ALL=(ALL) ALL
and
under #Member of admin group may gain root privileges:
%DOMAIN\domain^users ALL=(ALL) ALL
Then Install likewise with the following:
apt-get install likewise-open likewise-open-gui
Then join the domain:
domainjoin-cli join --ou COMPUTERS DOMAIN.COM administrator
This is opitional to allow you to just type in the username without the domain:
lwconfig assumeDefaultDomain True
Then you reboot the machine:
sudo reboot
After reboot you login:
login with domain username
from terminal you now check to see if all configuration went well:
lw-get-status (to see if active Directory is there)
lw-enum-users (to see the user of active Directory)
If errors should occur like not seeing the login page:
Enable domain login on login screen
gedit /etc/lightdm/lightdm.conf
Acutally adding: greeter-hide-users=true (this hide the users so becareful with this one)
greeter-show-manual-login=true (This shows all users and login function)
To leave the domain
sudo domainjoin-cli leave
Let me know if this helps!
This also worked for me:
%domain^admins ALL=(ALL:ALL) ALL
I assume this is because of the following commands used when setting up PBIS:
sudo /opt/pbis/bin/config UserDomainPrefix $domain
sudo /opt/pbis/bin/config AssumeDefaultDomain true
sudo /opt/pbis/bin/config LoginShellTemplate /bin/bash
sudo /opt/pbis/bin/config HomeDirTemplate %H/%U
This seems to make the domain accounts appear as local accounts to the system by assuming the domain name is before the login account. Therefore the domain name is not required by the sudoers list.
Any thoughts?
Best Answer
I'm not sure, but you also need to edit
/etc/nsswitch.conf
and change "host
" line like this:At least, it helped me