Preparing your Linux / UNIX system to be joined to Active Directory

Preparing your Linux / UNIX system to be joined to Active Directory

By Centrify Advisor III 2 weeks ago - last edited 2 hours ago

Centrify provides a solution to join Linux/Unix systems to Active Directory and enable users to log in with Active Directory credentials. This helps to improve security and simplify management by consolidating identites. In order to join a computer to AD, there are two things to prepare on your Linux/UNIX system. 

 

1. Configure DNS settings 

Make sure the Windows DNS Server(s) are included in the /etc/resolv.conf file. This enables systems to be able to communicate with an Active Directory domain controller. 

For example:

search yourdomain.com

nameserver 192.168.55.2

nameserver 192.168.44.3

 

Note: The method to configure the DNS settings in /etc/resolv.conf is different for each Linux / UNIX flavor and environment. If your DNS settings in /etc/resolv.conf are not being retained after reboot, you will need to edit the following files instead:

 

2. Change the computer name  

Before joining your computer to Active Directory, rename your computer to a unique name that is less than 15 characters and meets Active Directory computer naming convention requirements. The method for changing the computer name is also different for each Linux/Unix version, flavor and environment.

 

CentOS/RHEL 7

Run # hostnamectl set-hostname computername.yourdomain.com --static

 

CentOS 5/6, AWS EC2

1. Edit /etc/sysconfig/network. Make sure HOSTNAME=computername.yourdomain.com

2. Edit /etc/hosts

For example:

127.0.0.1 localhost

192.168.55.5 computername.yourdomain.com

3. Run the command # hostname computername.yourdomain.com 

4. Reboot

 

Ubuntu - 

1. Update the following files with your new computer name:

  • /etc/hostname
  • /etc/hosts

2. Reboot

 

Bonus - Firewall and network communication check

Make sure nothing is blocking the ports needed to communicate with Active Directory.

AD default ports.png

Verification

After you install the Centrify Agent, you can run ADcheck either before or during the adjoin process.

 

When you are ready to join your Linux/Unix system to Active Directory, check out the article on many ways to install the Centrify (Linux/Unix) Agent.

 

 

Other related articles: 

Troubleshooting adcheck errors

Showing results for 
Search instead for 
Do you mean 
Labels

Community Control Panel