[alpine-user] Fwd: Joining Alpine Linux to Active Directory for authentication

Paweł Szafer <pszafer@gmail.com>

Details

Message ID: <CAJrMv72vBsgWRQHQXMzbraWk9+P==dV9Rxo=AGqqqjQH0e19aw@mail.gmail.com>
Sender timestamp: 1550051121
DKIM signature: missing

Hi,

I'm trying to join Alpine Linux machine to Active Directory, without luck
so far.
What I checked:

   - SSSD - missing library for AD
   *Unable to load module [ad] with path [/usr/lib/sssd/libsss_ad.so]:
   Error loading shared library /usr/lib/sssd/libsss_ad.so: No such file or
   directory*
   - Winbind
      - missing init script but that's not big problem
      - Musl doesn't care about nsswitch.conf so getent always looking only
      for local users
      - pam_winbind

*pam_winbind(login:auth): user 'CONTOSO\admin' granted access
      authpriv.notice login[3128]: FAILED LOGIN (2) on '/dev/tty1' FOR
'UNKNOWN',
      Permission denied-----*

Any idea what to change?

My current pam.d files:

auth [success=1 default=ignore] pam_localuser.so
>
> auth [success=2 default=die] pam_winbind.so
>
> auth [success=1 default=die] pam_unix.so nullok
>
> auth requisite pam_deny.so
>
> account requisite       pam_unix.so     try_first_pass
>
> account [success=1 default=ignore] pam_localuser.so
>
> account required pam_winbind.so
>
> password [success=1 default=ignore] pam_localuser.so
>
> password [success=2 default=die] pam_winbind.so
>
> password [success=1 default=die] pam_unix.so sha512 shadow
>
> password requisite pam_deny.so
>
> session         required        pam_limits.so
>
> session         required        pam_unix.so
>
> session required pam_mkhomedir.so skel=/etc/skel/ umask=0022
>
> session [success=1 default=ignore] pam_localuser.so
>
> session required pam_winbind.so
>
> session         required        pam_motd.so
>
>
>
>
Thank you in advance for any help!

~alpine/users

[alpine-user] Fwd: Joining Alpine Linux to Active Directory for authentication