Last month I had written a post breifly talking about Ubuntu Hardy Hearon including Likewise Open allowing an Ubuntu desktop seamless integration into Active Directory. I decided to try it out today at work with a virtual machine just to see how seamless it was, and compare it to my previous test with openSUSE. Overall, the openSUSE experiement was “easier” to set up, as it was part of the installation process. With Ubuntu, I had to finish the install (having created a local user in the setup process), log in as that local user and install Likewise Open.
After getting the package installed, it was a matter of doing a simple command:
sudo domainjoin-cli join your.domain username
Followed by:
sudo update-rc.d likewise-open defaultssudo /etc/init.d/likewise-open start
The whole process was very painless, and I was pleased with the results. While the openSUSE process seemed more integrated into the install process, Ubuntu w/ Likewise seemed to be more integrated into the domain. For example, in openSUSE, I could access SMB shares w/o authenticating, but Ubuntu actually recognized the DFS shares rather than the individual shares, so it was more like what I’d see on a Windows box.
I was also able to set up printing to one of the network printers via SMB, and I was able to get Evolution accessing my Exchange mailbox.
All in all, I was pretty impressed!
April 22, 2008 at 12:54 am
Great!
Can you post any screenshots browsing the DFS shares, printers, etc.?
Thanks!
Marcelo
April 22, 2008 at 2:04 am
Hi Marchelo,
I’d like to give you screenshots – perhaps I’ll set up a test AD Domain here at home to demonstrate, but I would consider it a security risk to show my company’s AD structure.
April 26, 2008 at 4:27 pm
is not the same use likewise-open-gui?
May 1, 2008 at 1:50 pm
Fantastic, this was SO easy to plug right into our AD authentication scheme. My next question – how to I get users added to the appropriate Admin groups on the Ubuntu box?!? I’m logged in as my AD user account but can’t use Add/Remove Programs!
May 14, 2008 at 7:57 am
yes…. this is the right question. No update, no softwaremangement etc. Because sudo isn’t aviable for AD-User. And for non AD-User Evolution-Exchangeconnector isn’t working any more.
May 14, 2008 at 11:15 am
I would like to know that too…..
May 15, 2008 at 8:55 am
Done in my Ubuntu as your instruction.
But still failed on username authenticate, thus web connection with exchange seems work perfect.
Do you know why?
May 15, 2008 at 9:06 pm
Thanks very much!
I’ve gotten all domain users sudo power by adding the line:
%ESG\\domain^users ALL=(ALL) ALL
to my sudoers file. (where ESG is our domain). (run “sudo visudo” and add that line at the end) This might not be right for everyone’s implementation, seeing as this gives everyone from the domain sudo on my box. I would assume that you can replace domain^users with any valid AD group.
My problem is that I’m running into snags trying to get SMB shares mounted automatically upon login.
December 30, 2008 at 9:58 am
seems your opensuse post is gone somehow. can you put it live again?
March 13, 2009 at 10:58 pm
[...] According to the overseas Ubuntu user responded that through Likewise, his Ubuntu not can only join Microsoft very conveniently the territory, moreover distinguished the DFS filing system. Attaches SMB the words, but can also establish the network printer. What is better, he already had ability to let Evolution use the Exchange mailbox. Reference: Ubuntu 8.04 Active Directory Integration w/Likewise Open [...]
June 2, 2009 at 3:33 pm
The package is easy to use as per your instruction. Many times when I login with my AD account it mentions that the Domain controller is not available, but lets me in with cached credentials.
I also added the domain^users to my sudoers file and that helps. So I can now use sudo from the command line. However, some things will still not load as an AD user. For example user/group management. It just refuses to load. How else do I automatically populate linux groups with groups from the AD? Thanks.