Not sure if this went through last night, but here's how I configure PBIS. Super simple, works fantastic. Just make sure your dns is set correctly (to a domain connected dns server) and your hostname is ready to go. ---------- Forwarded message ---------- From: "Derek Murawsky" <[email protected]> Date: Aug 8, 2016 8:50 PM Subject: Re: [lopsa-tech] Ubuntu and AD To: "LOPSA Technical Discussions ([email protected])" <[email protected]> Cc:
This should get you going in no time. #!/bin/sh cd ~ wget 'http://download.beyondtrust.com/PBISO/8.3/pbis-open-8.3.0. 3287.linux.x86_64.deb.sh' bash 'pbis-open-8.3.0.3287.linux.x86_64.deb.sh' /opt/pbis/bin/domainjoin-cli join [domain] administrator@[domain] # /opt/pbis/bin/config UserDomainPrefix [short domain name] /opt/pbis/bin/config AssumeDefaultDomain true /opt/pbis/bin/config LoginShellTemplate /bin/bash /opt/pbis/bin/ad-cache --delete-all /opt/pbis/bin/update-dns # sed -i 's/sufficient/[success=ok default=ignore]/' /etc/pam.d/common-session reboot ##### End Script ##### /etc/sudoers.d/activedirectory # Adds AD Group "[AD Group]" to the sudoers list %[AD Group] ALL=(ALL:ALL) ALL #to limit logins to a specific group, use the following /opt/pbis/bin/config RequireMembershipOf [Short Domain]\\[AD Group]
_______________________________________________ Tech mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
