OS:ubuntu 18.04
- 1. apt-get -y install realmd sssd sssd-tools samba-common krb5-user packagekit samba-common-bin samba-libs adcli ntp
- 2. realm join -U Administrator cloud.xxx.edu.tw -V ,有看到成功加入就OK。
- 3. realm list for test,看有沒有咚咚跑出來。
- 4. realm permit --all,可能需要的一個指令,Not so sure.
- 5. /etc/sssd/sssd.conf file automatically produced from the realm join:
- If a pam_acct_mgmt error is observed, edit /etc/pam.d/common-account by commenting out this line:
#account [default=bad success=ok user_unknown=ignore] pam_sss.so
Note. It’s important if dovecot server is running. 若dovecot認證失敗,把debug開起來,如果看到pam_acct_mgmt() permission deny之類錯誤,就是這個啦!
- 6. Login to server to test using the username@domain.example format. If you wish to have your users login with username, instead of username@domain you can adjust this line in the sssd.conf like so:
use_fully_qualified_names = False
Then restart the sssd service.
