Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230

 

 

 

how to join active directory with debian 9

New to Debian (Or Linux in general)? Ask your questions here!
Post Reply
Message
Author
maxbre
Posts: 76
Joined: 2014-11-08 16:44

how to join active directory with debian 9

#1 Post by maxbre »

all

I followed this recipe to join my machine running debian 9.1 to a windows active directory
http://www.alandmoore.com/blog/2015/05/ ... directory/

It seems to me that everything went fine (the machine is listed in the AD) but the problem is now I can not login as 'myusername@mydomain'...

any hint for that?

thanks
:?:

User avatar
squeeze
Posts: 299
Joined: 2010-06-14 23:16
Location: thimbleweedpark

Re: how to join active directory with debian 9

#2 Post by squeeze »

Any hint :idea: :

Did you read ALL the comments at the bottom of the manual?

What error messages are there?
“Have you tried turning it off and on again?”

maxbre
Posts: 76
Joined: 2014-11-08 16:44

Re: how to join active directory with debian 9

#3 Post by maxbre »

yes, in fact I've been trying the solution about modifying /etc/sssd.d/sssd.conf but without much success... so I reverted back to the original configuration of the file

the problem is now how to find the error messages, where to look for that information?

I can see (from another machine) that the computer object is effectively created in Active Directory but very simply it is not possible to login with an ad account

at loginscreen in gdm3 I can not authenticate with 'myuser@mydomain' ( it says "Invalid password, please try again")

how to proceed?

thanks
:oops:

User avatar
squeeze
Posts: 299
Joined: 2010-06-14 23:16
Location: thimbleweedpark

Re: how to join active directory with debian 9

#4 Post by squeeze »

maxbre wrote:at loginscreen in gdm3 I can not authenticate with 'myuser@mydomain' ( it says "Invalid password, please try again")
What makes you think you could login to AD in gdm3?! (The bash-script in your tutorial tries to login from the cli)

Maybe the Arch-Wiki will help?!
“Have you tried turning it off and on again?”

maxbre
Posts: 76
Joined: 2014-11-08 16:44

Re: how to join active directory with debian 9

#5 Post by maxbre »

By entering the following code in cli I got this

Code: Select all

realm join --user=myusername mydomain
realm: Already joined to this domain
it seems to be joined, isn't?

maxbre
Posts: 76
Joined: 2014-11-08 16:44

Re: how to join active directory with debian 9

#6 Post by maxbre »

no way to join the domain with debian 9

what do you think about this last desperate attempt:
- intsall debian jessie
- join ad domain with jessie (which I know how to)
- upgrade to stretch

do you think this weird procedure could be anyhow working?

cheers
:shock:

maxbre
Posts: 76
Joined: 2014-11-08 16:44

Re: how to join active directory with debian 9

#7 Post by maxbre »

update of this neverending story

by installing first debian 8.8 (jessie) I can effectively join the ad domain and login as ad user but after upgrading to to debian 9.1 (stretch) this possibility seems to be lost

at boot of the system now I can see there is a message like 'failed to load sssd'

I've been trying to leave and the re-join the domain but without success

Code: Select all

realm leave --user=domainadminuser@domain domain
it worked out, I left the domain

Code: Select all

realm join --user=domainadminuser@domain domain

See: journalctl REALMD_OPERATION=r464.1483
realm: Couldn't join realm: Failed to join the domain
...but this is not, I can not rejoin ad!

hopeless...

still in the search of a viable solution to this annoying problem

thanks
:x

Post Reply