Here are the steps I took to get PowerBroker Identity Services, Open Edition onto Ubuntu Server.
Versions:
- Ubuntu Server 14.04 64-bit
- PBIS Open 8.0.0.2016 - Stable Release
- Log-in to server with sudo privileges
- Be sure ssh server is installed
- Download PowerBroker® Identity Services, Open Edition
- Make script executable $chmod +x pbis-open-8.0.0.2016.linux.x86_64.deb.sh
- Execute install script and follow istructions $sudo ./pbis-open-8.0.0.2016.linux.x86_64.deb.sh
- Join the domain $sudo domainjoin-cli join <domain name> <domain admin user>
- Change default shell for domain users to bash $sudo /opt/pbis/bin/config LoginShellTemplate /bin/bash
- If you would like, set the domain as default (not require <domain>\ to precede username for domain logins) $sudo /opt/pbis/bin/config AssumeDefaultDomain true
- Add domain users to necessary groups in /etc/group (sudo for the admin users)
- Clear cache $sudo /opt/pbis/bin/ad-cache --delete-all
- Apply fix: Edit /etc/pam.d/common-session and change "session sufficient" line to
session [success=ok default=ignore] pam_lsass.so
- Reboot and login with domain user
This comment has been removed by the author.
ReplyDeleteIf you are logged in with root priviledges you can remove the sudo commands that head your above instructions.
ReplyDeleteThis can help with step 13:
ReplyDeletehttp://askubuntu.com/questions/121124/how-do-i-enable-the-other-user-for-login-with-active-directory
In the case that you the ability to log in to the domain with any user found in your authentication server.