FreeIPA

Replace the default shell for domain users on Linux
Replace the default shell …

Intro After setting up the AD trust, every time I logged in the shell defaulted to /bin/sh. To change it to /bin/bash or any other shell of your choice you can do the following. Editing SSSD.conf Navigate to /etc/sssd/ and open sssd.conf in an elevated text editor. It should look something like …

Apr 2, 2024 Read
Map an Active Directory group to sudo in Linux
Map an Active Directory …

Intro After creating my domain trust between AD and FreeIPA, I was left wanting to access restricted resources in Linux using my AD accounts. To circumvent this, I mapped a group from AD to FreeIPA and gave it the appropriate permissions. Create the group in AD The first step would be to create a …

Feb 21, 2024 Read
Log in to Linux using AD credentials without specifying the domain
Log in to Linux using AD …

Intro After creating a trust in FreeIPA, I kept having to write the full domain alongside my username whenever I tried to access the system. These are the steps I took to log in only with my username. Editing SSSD.conf Navigate to /etc/sssd/ and open sssd.conf in an elevated text editor. It should …

Feb 16, 2024 Read
Setting up a cross-domain trust between FreeIPA and AD
Setting up a cross-domain …

Intro I’ve been playing around with FreeIPA in my homelab for a while and have always wanted to enable seamless authentication between all my hosts regardless of their operating system. I stumbled upon the concept of cross-domain trusts between FreeIPA and Active Directory which allows us to …

Feb 16, 2024 Read
Automatically create local home directory when logging in with FreeIPA
Automatically create …

Intro While setting up my hosts with FreeIPA, I noticed that home directories were not being created when logging in through ssh. Looking online it seems that most people just use NFS shares to keep home directories the same across devices but I did not want to set up NFS home shares. Fixing this in …

Jun 7, 2023 Read