Ubuntu 8.10 and AD users
Stephen
cryptworks at gmail.com
Mon Dec 1 10:01:48 MST 2008
well the user is me, i will be useing command line commands
intermittently and i would like to do so without having to switch
users/log out-in again
ill be sitting at the Linux box as it is hopefully to become my
desktop environment (replacing windows)
and to log in i do so (via likewise-open) as DOMAIN\user-name I can
then access the machine just fine but normal user permissions any
admin level tasks i want to do to the machine i have to get creative
or log in as a locally managed user.
interestingly enough i can drop to terminal and then su to root but if
the application i want has any X interaction it will not work.
If i could somehow import the Users i want to give elevated access to
the local machine i would know what i am doing from there. but the
users that are authenticating from the domain are nowhere to be found.
the thread i started at the likewise forums have given me a start but
its having issues as well
http://www.likewisesoftware.com/community/index.php/forums/viewthread/80/
On Mon, Dec 1, 2008 at 9:49 AM, Bob Elzer <bob.elzer at gmail.com> wrote:
> Is the MS user being added to the passwd file ?
>
> How will they access the linux machine ?
>
> Will they be running commands from the command line ?
>
>
> -----Original Message-----
> From: plug-discuss-bounces at lists.plug.phoenix.az.us
> [mailto:plug-discuss-bounces at lists.plug.phoenix.az.us] On Behalf Of Stephen
> Sent: Monday, December 01, 2008 9:03 AM
> To: Main PLUG discussion list
> Subject: Re: Ubuntu 8.10 and AD users
>
> not quite what i am trying to do.
>
> MS AD network/server
>
> Linux Desktop
>
> Wish to use AD user credentials to access local machine. this halfway works.
>
> I would like to be able to give a specific MS user elevated permissions to
> the local Ubuntu Machine.
>
> granting access to a directory is something i have done before. and
> accessing a domain I have done before also. this is right in the middle it
> seems.
>
> On Sun, Nov 30, 2008 at 10:41 PM, Bob Elzer <bob.elzer at gmail.com> wrote:
>> I think you are looking at this the wrong way.
>>
>> Active directory is how MS authenticates & shares it's stuff with
>> other systems.
>>
>> So if you are on a linux system and want to access the AD stuff, you
>> would use something like likewise or samba.
>>
>> Now if you have linux stuff and you want microsoft people to access
>> your stuff, you need something on their systems to access the linux stuff.
>>
>> Something like ssh or telnet to login, or maybe an xwindow system.
>>
>> They need to be authenticated into the linux system, so setting up
>> samba would seem appropriate, to allow the ms user to be validated.
>>
>> The links being posted, all seem to be just allowing the linux users
>> access to MS AD.
>>
>>
>>
>> -----Original Message-----
>> From: plug-discuss-bounces at lists.plug.phoenix.az.us
>> [mailto:plug-discuss-bounces at lists.plug.phoenix.az.us] On Behalf Of
>> Stephen
>> Sent: Sunday, November 30, 2008 9:29 PM
>> To: Main PLUG discussion list
>> Subject: Re: Ubuntu 8.10 and AD users
>>
>> woot thanks, ill have to give this a going over.
>>
>> On Sun, Nov 30, 2008 at 9:12 PM, Patrick Jacques
>> <patrick at kinetic-computing.net> wrote:
>>> This is actually a common configuration scenario, but at times it can
>>> be a pain to get going completely. One of the keys is to make sure
>>> the system is understanding AD usernames like in step 2.1 (testing)
>>> in
>> this guide:
>>>
>>> http://developer.novell.com/wiki/index.php/HOWTO:_Configure_Ubuntu_fo
>>> r
>>> _Active_Directory_Authentication
>>>
>>> If it's working, you can add the appropriate information in
>>> /etc/sudoers to allow access to local system admin resources. If
>>> not, check the guide for anything you may have missed configuration-wise.
>>>
>>>
>>>
>>> Stephen wrote:
>>>
>>> in case any of you are interested in following this, it appears that
>>> nothing quite like this has been tried yet
>>>
>>> I'm so contrary :-)
>>>
>>> http://www.likewisesoftware.com/community/index.php/forums/viewthread
>>> /
>>> 80/
>>>
>>> On Sun, Nov 30, 2008 at 5:52 PM, Stephen <cryptworks at gmail.com> wrote:
>>>
>>>
>>> your about as on base as i am. so that's fine. I was just wondering
>>> if anyone has had any dealing with Ad integration.
>>>
>>> On Sun, Nov 30, 2008 at 1:20 PM, Bob Elzer <bob.elzer at gmail.com> wrote:
>>>
>>>
>>> I'm not sure, because I haven't tried likewise, but looking at their
>>> web page I don't see anything about letting AD users control your
>>> linux
>> machine.
>>>
>>> It talks about letting you access AD in every way, which I think it
>>> has done that.
>>>
>>> But I don't think it lets AD access your linux.
>>>
>>> I might suggest you post this question to the likewise forum.
>>>
>>> If I'm way off base, Just ignore me.
>>>
>>>
>>> -----Original Message-----
>>> From: plug-discuss-bounces at lists.plug.phoenix.az.us
>>> [mailto:plug-discuss-bounces at lists.plug.phoenix.az.us] On Behalf Of
>>> Stephen
>>> Sent: Sunday, November 30, 2008 9:05 AM
>>> To: plug-discuss at lists.plug.phoenix.az.us
>>> Subject: Ubuntu 8.10 and AD users
>>>
>>> I am part of an It team at work, and when i lost the vista install on
>>> my machine i decided to see how well i could run Linux as my desktop
>>> in that environment, with a great thumbs up from my boss which is
>>> even better, as he wants to see how it works out.
>>>
>>> I can join the domain now and log in with AD users but i cannot give
>>> them any permissions other than that of a regular user, not can i add
>>> them to a my sudoers list which is odd.
>>>
>>> I am using a new method for AD membership (being likewise-open) than
>>> a normal samba configuration which i think is part of my oddity.
>>>
>>> Has anyone here used likewise-open at all? or any suggestions on how
>>> to bring in the AD user list so that i can better integrate with my
>> network?
>>>
>>> Thanks for your time!
>>>
>>> --
>>> A mouse trap, placed on top of your alarm clock, will prevent you
>>> from rolling over and going back to sleep after you hit the snooze
> button.
>>>
>>> Stephen
>>> ---------------------------------------------------
>>> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
>>> To subscribe, unsubscribe, or to change your mail settings:
>>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>>
>>> ---------------------------------------------------
>>> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
>>> To subscribe, unsubscribe, or to change your mail settings:
>>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>>
>>>
>>>
>>> --
>>> A mouse trap, placed on top of your alarm clock, will prevent you
>>> from rolling over and going back to sleep after you hit the snooze
> button.
>>>
>>> Stephen
>>>
>>>
>>>
>>>
>>>
>>> ---------------------------------------------------
>>> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
>>> To subscribe, unsubscribe, or to change your mail settings:
>>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>>
>>
>>
>>
>> --
>> A mouse trap, placed on top of your alarm clock, will prevent you from
>> rolling over and going back to sleep after you hit the snooze button.
>>
>> Stephen
>> ---------------------------------------------------
>> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
>> To subscribe, unsubscribe, or to change your mail settings:
>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>
>> ---------------------------------------------------
>> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
>> To subscribe, unsubscribe, or to change your mail settings:
>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>
>
>
>
> --
> A mouse trap, placed on top of your alarm clock, will prevent you from
> rolling over and going back to sleep after you hit the snooze button.
>
> Stephen
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
> ---------------------------------------------------
> PLUG-discuss mailing list - PLUG-discuss at lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
--
A mouse trap, placed on top of your alarm clock, will prevent you from
rolling over and going back to sleep after you hit the snooze button.
Stephen
More information about the PLUG-discuss
mailing list