Issues Encrypting Home Directory for Domain Users
02-06-2017 05:54 PM
I am currently trying to encrypt the home folder using domain credentials.
The computer is already bounded successfully through our active directory. I am able to login with employee accounts on this computer via AD.
I am trying to encrypt the home folder for a user through the admin account.
We were essentially following steps through http://www.howtogeek.com/116032/how-to-encrypt-you
I run into an issue where it is not accepting the password.
We tried to encrypt with:
sudo ecryptfs-migrate-home -u user
Then we get asked to enter the password and we receive this error:
ERROR: Your login passphrase is incorrect
We had tried multiple accounts with the correct passphrase but it is still having the same error.
I feel as if this issue has to do with the encrytion talking to the domain to get the AD credentials.
Thanks for your time reading this post!
02-06-2017 08:50 PM
Welcome to the Centrify Express forums.
Note that the functionality of provided by Centrify is working as expected based on your feedback.
Some background - Centrify uses 2 well-known UNIX frameworks (Name Service Switch for user and group resolution and Pluggable Authentication Modules for AuthN) and Kerberos as the authentication protocol.
This means that your application (in this case ecryptfs and its utilities) must be compiled to support those frameworks.
Please verify that's the case before you move forward and that you're properly configuring those options.
If you don't know what NSS and PAM are, further investigation and testing is required on your end.
We'll be here to help.