HowTo join Fedora 27 Desktop to NethServer-7 Active Directory
Please feel free to give me a feedback, I mean technically and formally.
Warning:
This is based upon limited testing, and a small number of users. Both, Client and Server, were installed as VPS under Proxmox PVE.
Server prerequisites:
Installed NethServer 7.4 Server and updated from command line. Active Directory has been configured and the domain-name example.org was given.
Client prerequisites:
Installed Fedora 27 (Fedora-Workstation-Live-x86_64-27-1.6.iso), with standard gnome desktop and one local user who has local admin rights. DHCP-Client was activ to get an IP from the NethServer who is acting as DHCP-and AD-Server. It is important that the Fedora Client can resolv DNS correctly.
Now we can join the Domain example.org with
Open a Terminal on Fedora 27 and get root:
sudo su
Install some packages
yum install nano realmd oddjob oddjob-mkhomedir sssd adcli samba samba-common
Open a text editor and replace DEFAULT with LEGACY in /etc/crypto-policies/config
nano /etc/crypto-policies/config
Join AD domain
realm join --user=administrator example.org
Check domain-join with
id administrator@example.org
Open a text editor and add override_homedir and override_shell, on the end of sssd.conf
nano /etc/sssd/sssd.conf
For instance append the following lines:
override_homedir = /home/%u@%d
override_shell = /bin/bash
Optional - set sudoers permission:
echo "administrator@example.org ALL=(ALL) ALL" | sudo tee -a /etc/sudoers`
echo "admin@example.org ALL=(ALL) ALL" | sudo tee -a /etc/sudoers`
Optional - Reboot Fedora Desktop or restart your desktop session
reboot
After the reboot, logon with
- user: administrator@example.org
- pass: your-administrator-password
