search

Jean28518 / libre-workspace

Cloud environment aiming to be an alternative to MS 365 or Google Workspace
https://www.libre-workspace.org
GNU General Public License v3.0
44 stars 4 forks source link

Verify open ports for realm join #135

Open Jean28518 opened 3 months ago

Jean28518 commented 3 months ago

ufw allow kerberos ufw allow ldap ufw allow kdc ufw allow kerberos-adm ufw allow 749 # kerberos-adm (different port) ufw allow kpasswd

Nachtrag: Ich mußte auch noch "packagekit" nachinstallieren.

Mein komplettes (automatisch ablaufendes) join-Skript sieht so aus:

        apt-get update -y
        apt-get install -y sssd-ad sssd-tools realmd adcli packagekit

        echo '[libdefaults]

default_domain = $REALM default_realm = $REALM rdns = false' > /etc/krb5.conf

        apt-get install -y krb5-user sssd-krb5

        hostnamectl set-hostname $client.$DOMAIN

        yes '$bulkPass' | kinit $admin

        yes '$bulkPass' | realm join -v -U $admin $DOMAIN

        pam-auth-update --enable mkhomedir