Re: Ubuntu 8.10 and AD users

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MBob Elzer at <-
MMatt Graham at ->
Attachments:
Message as email
+ (text/plain)
Delete this message
Reply to this message
Author: Stephen
Date:  
To: Main PLUG discussion list
Subject: Re: Ubuntu 8.10 and AD users
well the user is me, i will be useing command line commands
intermittently and i would like to do so without having to switch
users/log out-in again

ill be sitting at the Linux box as it is hopefully to become my
desktop environment (replacing windows)

and to log in i do so (via likewise-open) as DOMAIN\user-name I can
then access the machine just fine but normal user permissions any
admin level tasks i want to do to the machine i have to get creative
or log in as a locally managed user.

interestingly enough i can drop to terminal and then su to root but if
the application i want has any X interaction it will not work.

If i could somehow import the Users i want to give elevated access to
the local machine i would know what i am doing from there. but the
users that are authenticating from the domain are nowhere to be found.

the thread i started at the likewise forums have given me a start but
its having issues as well

http://www.likewisesoftware.com/community/index.php/forums/viewthread/80/



On Mon, Dec 1, 2008 at 9:49 AM, Bob Elzer <> wrote:
> Is the MS user being added to the passwd file ?
>
> How will they access the linux machine ?
>
> Will they be running commands from the command line ?
>
>
> -----Original Message-----
> From:
> [mailto:plug-discuss-bounces@lists.plug.phoenix.az.us] On Behalf Of Stephen
> Sent: Monday, December 01, 2008 9:03 AM
> To: Main PLUG discussion list
> Subject: Re: Ubuntu 8.10 and AD users
>
> not quite what i am trying to do.
>
> MS AD network/server
>
> Linux Desktop
>
> Wish to use AD user credentials to access local machine. this halfway works.
>
> I would like to be able to give a specific MS user elevated permissions to
> the local Ubuntu Machine.
>
> granting access to a directory is something i have done before. and
> accessing a domain I have done before also. this is right in the middle it
> seems.
>
> On Sun, Nov 30, 2008 at 10:41 PM, Bob Elzer <> wrote:
>> I think you are looking at this the wrong way.
>>
>> Active directory is how MS authenticates & shares it's stuff with
>> other systems.
>>
>> So if you are on a linux system and want to access the AD stuff, you
>> would use something like likewise or samba.
>>
>> Now if you have linux stuff and you want microsoft people to access
>> your stuff, you need something on their systems to access the linux stuff.
>>
>> Something like ssh or telnet to login, or maybe an xwindow system.
>>
>> They need to be authenticated into the linux system, so setting up
>> samba would seem appropriate, to allow the ms user to be validated.
>>
>> The links being posted, all seem to be just allowing the linux users
>> access to MS AD.
>>
>>
>>
>> -----Original Message-----
>> From:
>> [mailto:plug-discuss-bounces@lists.plug.phoenix.az.us] On Behalf Of
>> Stephen
>> Sent: Sunday, November 30, 2008 9:29 PM
>> To: Main PLUG discussion list
>> Subject: Re: Ubuntu 8.10 and AD users
>>
>> woot thanks, ill have to give this a going over.
>>
>> On Sun, Nov 30, 2008 at 9:12 PM, Patrick Jacques
>> <> wrote:
>>> This is actually a common configuration scenario, but at times it can
>>> be a pain to get going completely. One of the keys is to make sure
>>> the system is understanding AD usernames like in step 2.1 (testing)
>>> in
>> this guide:
>>>
>>> http://developer.novell.com/wiki/index.php/HOWTO:_Configure_Ubuntu_fo
>>> r
>>> _Active_Directory_Authentication
>>>
>>> If it's working, you can add the appropriate information in
>>> /etc/sudoers to allow access to local system admin resources. If
>>> not, check the guide for anything you may have missed configuration-wise.
>>>
>>>
>>>
>>> Stephen wrote:
>>>
>>> in case any of you are interested in following this, it appears that
>>> nothing quite like this has been tried yet
>>>
>>> I'm so contrary :-)
>>>
>>> http://www.likewisesoftware.com/community/index.php/forums/viewthread
>>> /
>>> 80/
>>>
>>> On Sun, Nov 30, 2008 at 5:52 PM, Stephen <> wrote:
>>>
>>>
>>> your about as on base as i am. so that's fine. I was just wondering
>>> if anyone has had any dealing with Ad integration.
>>>
>>> On Sun, Nov 30, 2008 at 1:20 PM, Bob Elzer <> wrote:
>>>
>>>
>>> I'm not sure, because I haven't tried likewise, but looking at their
>>> web page I don't see anything about letting AD users control your
>>> linux
>> machine.
>>>
>>> It talks about letting you access AD in every way, which I think it
>>> has done that.
>>>
>>> But I don't think it lets AD access your linux.
>>>
>>> I might suggest you post this question to the likewise forum.
>>>
>>> If I'm way off base, Just ignore me.
>>>
>>>
>>> -----Original Message-----
>>> From:
>>> [mailto:plug-discuss-bounces@lists.plug.phoenix.az.us] On Behalf Of
>>> Stephen
>>> Sent: Sunday, November 30, 2008 9:05 AM
>>> To:
>>> Subject: Ubuntu 8.10 and AD users
>>>
>>> I am part of an It team at work, and when i lost the vista install on
>>> my machine i decided to see how well i could run Linux as my desktop
>>> in that environment, with a great thumbs up from my boss which is
>>> even better, as he wants to see how it works out.
>>>
>>> I can join the domain now and log in with AD users but i cannot give
>>> them any permissions other than that of a regular user, not can i add
>>> them to a my sudoers list which is odd.
>>>
>>> I am using a new method for AD membership (being likewise-open) than
>>> a normal samba configuration which i think is part of my oddity.
>>>
>>> Has anyone here used likewise-open at all? or any suggestions on how
>>> to bring in the AD user list so that i can better integrate with my
>> network?
>>>
>>> Thanks for your time!
>>>
>>> --
>>> A mouse trap, placed on top of your alarm clock, will prevent you
>>> from rolling over and going back to sleep after you hit the snooze
> button.
>>>
>>> Stephen
>>> ---------------------------------------------------
>>> PLUG-discuss mailing list -
>>> To subscribe, unsubscribe, or to change your mail settings:
>>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>>
>>> ---------------------------------------------------
>>> PLUG-discuss mailing list -
>>> To subscribe, unsubscribe, or to change your mail settings:
>>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>>
>>>
>>>
>>> --
>>> A mouse trap, placed on top of your alarm clock, will prevent you
>>> from rolling over and going back to sleep after you hit the snooze
> button.
>>>
>>> Stephen
>>>
>>>
>>>
>>>
>>>
>>> ---------------------------------------------------
>>> PLUG-discuss mailing list -
>>> To subscribe, unsubscribe, or to change your mail settings:
>>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>>
>>
>>
>>
>> --
>> A mouse trap, placed on top of your alarm clock, will prevent you from
>> rolling over and going back to sleep after you hit the snooze button.
>>
>> Stephen
>> ---------------------------------------------------
>> PLUG-discuss mailing list -
>> To subscribe, unsubscribe, or to change your mail settings:
>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>
>> ---------------------------------------------------
>> PLUG-discuss mailing list -
>> To subscribe, unsubscribe, or to change your mail settings:
>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>>
>
>
>
> --
> A mouse trap, placed on top of your alarm clock, will prevent you from
> rolling over and going back to sleep after you hit the snooze button.
>
> Stephen
> ---------------------------------------------------
> PLUG-discuss mailing list -
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
> ---------------------------------------------------
> PLUG-discuss mailing list -
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>



--
A mouse trap, placed on top of your alarm clock, will prevent you from
rolling over and going back to sleep after you hit the snooze button.

Stephen
---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

This message was posted to the following mailing lists:
Plug Discuss
Mailing List Info | Nearby Messages		<-RE: Ubuntu 8.10 and AD usersRe: Ubuntu 8.10 and AD users->
Some Mailing List Archive administrated by UnconfiguredLurker (version 2.3)