From Fedora Project Wiki

Revision as of 18:18, 9 May 2013 by Yelley (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Description

Join the current machine to an Active Directory, and prevent automatic installation of packages.

Setup

  1. Make sure you have other required software:
    • realmd 0.14.0 or later
  2. Verify that your Active Directory domain access works, or set a domain up.
  3. You need a domain account as an administrator.
  4. Leave realm(s) you are currently joined to.
  5. Remove necessary packages for joining active directory:
    $ sudo yum remove sssd adcli sssd-tools
  6. Tell realmd not to automatically install packages, by placing these lines in your /etc/realmd.conf. If /etc/realmd.conf does not exist (which is the default behavior), you will need to create a new /etc/realmd.conf file.
[service]
automatic-install = no

Make sure realmd is restarted:

$ sudo killall realmd

How to test

  1. Discover the domain, which should list the required packages:
    $ realm discover ad.example.com
    Check the required-package lines.
  2. Try to join the domain, which should fail and list packages needed:
    $ realm join --user=Administrator server.ad.example.com
    The packages needed should be listed, like: sssd, sssd-tools

Expected Results

  1. Now install the packages listed above using a yum command:
    $ sudo yum install sssd adcli sssd-tools samba-common
  2. Perform the join again, this time it should complete without error



Troubleshooting

Use the --verbose argument to see details of what's being done during a join. Include verbose output in any bug reports.

$ realm join --verbose server.ad.example.com