In one of those typical Internet moments when "it wasn't what I was looking for - but it looked like some very useful information that I would like the time to implement"?
I have been thinking of getting this working correctly at home based on some virtual machines, but as it's not something that has a burning need to get done it probably won't get done anytime soon - but I'm sure this will come up somewhere so thought it useful to point out that there is this comprehensive guide from Novell as well as the one at the Ubuntu Wiki site: ActiveDirectoryHowto
Introduction
There are two important concepts for users: authentication, and accounts. With Active Directory authentication uses the Kerberos 5 protocol, and account information uses LDAP. Therefore we need to configure Kerberos 5 and LDAP on Ubuntu in order to manage users in an Active Directory.
Throughout this article the following IP addresses are going to be used, adjust appropriately for your network.
IP address Description 10.30.2.1 Router and DNS server or proxy 10.30.2.2 DHCP and TFTP server 10.30.2.10 NFS server 10.30.2.20 LTSP server 10.30.2.100-200 LTSP clients
It is assumed Active Directory is configured with an AD realm of EXAMPLE.COM and we will create one user:
account name: wendy UID: 1002 GID: 1002 home directory: /home/wendy shell: /bin/bash
[edit]
Accounts
For LDAP accounts the software package libnss-ldap is required, in Ubuntu Dapper CD this is not in the main repository it is part of the universe repository, however if you are using an internet repository it is part of the main repository and you can skip to the next stage. In order to access to the universe repository edit the file /etc/apt/sources.list and uncomment the universe lines.
## Uncomment the following two lines to add software from the 'universe' ## repository. ## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu ## team, and may not be under a free licence. Please satisfy yourself as to ## your rights to use the software. Also, please note that software in ## universe WILL NOT receive any review or updates from the Ubuntu security ## team. deb http://hk.archive.ubuntu.com/ubuntu/ dapper universe main restricted multiverse deb-src http://hk.archive.ubuntu.com/ubuntu/ dapper universe main restricted
Then update the package list and install.
$ sudo apt-get update $ sudo apt-get install libnss-ldap
Enter the address of the Active Directory server.
The Active Directory is accessed with the LDAP protocol
Specify the LDAP search basedn
The LDAP search base DN is where to search for user account information
more at source... HOWTO: Configure Ubuntu for Active Directory Authentication - DeveloperNet