SUSECON
Results 1 to 4 of 4

Thread: SLED/GDM does not show the Menue to logging in on AD Domain

Threaded View

  1. SLED/GDM does not show the Menue to logging in on AD Domain

    sled11 SP3 + online updates.

    via YaST, this sled11 sp3 box, joins MS Active Directory Domain without any issue, but does not provide option to logging in to an MS AD Domain, i.e GNOME/GDM does not show DOMAIN menu.

    Also in the same environment we had previously joined several other SP2/SP3 boxes, and GNOME always provide the option to logging in on Domain, but these sled boxes(GNOME/GDM) does not.

    here is the /etc/krb5.conf
    Code:
    [libdefaults]
    	default_realm = MS-AD-DOMAIN.COM
    	clockskew = 300
    [domain_realm]
    	.ms-ad-domain.com = MS-AD-DOMAIN.COM
    [realms]
    MS-AD-DOMAIN.COM = {
    	kdc = dc1.ms-ad-domain.com
    	default_domain = ms-ad-domain.com
    	admin_server = dc1.ms-ad-domain.com
    }
    [appdefaults]
    pam = {
    	ticket_lifetime = 1d
    	renew_lifetime = 1d
    	forwardable = true
    	proxiable = false
    	minimum_uid = 1
    }
    /etc/samba/smb.conf
    Code:
    # smb.conf is the main Samba configuration file. You find a full commented
    # version at /usr/share/doc/packages/samba/examples/smb.conf.SUSE if the
    # samba-doc package is installed.
    # Date: 2013-05-28
    [global]
    	workgroup = MS-AD-DOMAIN
    	passdb backend = tdbsam
    	printing = cups
    	printcap name = cups
    	printcap cache time = 750
    	cups options = raw
    	map to guest = Bad User
    	include = /etc/samba/dhcp.conf
    	logon path = \\%L\profiles\.msprofile
    	logon home = \\%L\%U\.9xprofile
    	logon drive = P:
    	usershare allow guests = No
    	idmap gid = 10000-20000
    	idmap uid = 10000-20000
    	realm = MS-AD-DOMAIN.COM
    	security = ADS
    	template homedir = /home/%D/%U
    	template shell = /bin/bash
    	winbind offline logon = yes
    	kerberos method = secrets and keytab
    	winbind refresh tickets = yes
    [homes]
    	comment = Home Directories
    	valid users = %S, %D%w%S
    	browseable = No
    	read only = No
    	inherit acls = Yes
    [profiles]
    	comment = Network Profiles Service
    	path = %H
    	read only = No
    	store dos attributes = Yes
    	create mask = 0600
    	directory mask = 0700
    [users]
    	comment = All users
    	path = /home
    	read only = No
    	inherit acls = Yes
    	veto files = /aquota.user/groups/shares/
    [groups]
    	comment = All groups
    	path = /home/groups
    	read only = No
    	inherit acls = Yes
    [printers]
    	comment = All Printers
    	path = /var/tmp
    	printable = Yes
    	create mask = 0600
    	browseable = No
    [print$]
    	comment = Printer Drivers
    	path = /var/lib/samba/drivers
    	write list = @ntadmin root
    	force group = ntadmin
    	create mask = 0664
    	directory mask = 0775
    Please help asap
    Last edited by sharfuddin; 22-May-2014 at 18:23.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •