NetworkManager
/etc/NetworkManager/NetworkManager.conf
[ifupdown] managed=false
→
[ifupdown] managed=true
sudo systemctl disable NetworkManager-wait-online.service sudo systemctl mask NetworkManager-wait-online.service
netplan
network: renderer: NetworkManager
systemd-resolved local domains
/etc/systemd/resolved.conf.d/voximplant.conf
[Resolve] DNS=192.168.15.12 192.168.15.13 Domains=voximplant.local
sudo service systemd-resolved restart
sssd
Install packages
sudo apt install sssd-ad sssd-tools realmd adcli
Check if domain available
sudo realm -v discover ad1.example.com
Join Domain:
sudo realm join -U admuser ad1.example.com
sssd settings
[sssd]
domains = voximplant.local
config_file_version = 2
default_domain_suffix = voximplant.local
services = nss, pam
[domain/voximplant.local]
default_shell = /bin/bash
krb5_store_password_if_offline = True
cache_credentials = True
krb5_realm = VOXIMPLANT.LOCAL
realmd_tags = manages-system joined-with-adcli
id_provider = ad
fallback_homedir = /home/%d/%u
ad_domain = voximplant.local
use_fully_qualified_names = True
ldap_id_mapping = True
access_provider = ad
sudo service sssd restart
pam settings
/etc/pam.d/common-session
session optional pam_mount.so
Discussion