Mail archive
alpine-user

[alpine-user] Fwd: Joining Alpine Linux to Active Directory for authentication

From: Paweł Szafer <pszafer_at_gmail.com>
Date: Wed, 13 Feb 2019 10:45:21 +0100

Hi,

I'm trying to join Alpine Linux machine to Active Directory, without luck
so far.
What I checked:

   - SSSD - missing library for AD
   *Unable to load module [ad] with path [/usr/lib/sssd/libsss_ad.so]:
   Error loading shared library /usr/lib/sssd/libsss_ad.so: No such file or
   directory*
   - Winbind
      - missing init script but that's not big problem
      - Musl doesn't care about nsswitch.conf so getent always looking only
      for local users
      - pam_winbind

*pam_winbind(login:auth): user 'CONTOSO\admin' granted access
      authpriv.notice login[3128]: FAILED LOGIN (2) on '/dev/tty1' FOR
'UNKNOWN',
      Permission denied-----*

Any idea what to change?

My current pam.d files:

auth [success=1 default=ignore] pam_localuser.so
>
> auth [success=2 default=die] pam_winbind.so
>
> auth [success=1 default=die] pam_unix.so nullok
>
> auth requisite pam_deny.so
>
> account requisite pam_unix.so try_first_pass
>
> account [success=1 default=ignore] pam_localuser.so
>
> account required pam_winbind.so
>
> password [success=1 default=ignore] pam_localuser.so
>
> password [success=2 default=die] pam_winbind.so
>
> password [success=1 default=die] pam_unix.so sha512 shadow
>
> password requisite pam_deny.so
>
> session required pam_limits.so
>
> session required pam_unix.so
>
> session required pam_mkhomedir.so skel=/etc/skel/ umask=0022
>
> session [success=1 default=ignore] pam_localuser.so
>
> session required pam_winbind.so
>
> session required pam_motd.so
>
>
>
>
Thank you in advance for any help!



---
Unsubscribe:  alpine-user+unsubscribe_at_lists.alpinelinux.org
Help:         alpine-user+help_at_lists.alpinelinux.org
---
Received on Wed Feb 13 2019 - 10:45:21 UTC