SuSE (SLES) 11 Works Flawlessly with Windows Server 2008 Authentication

Well that couldn’t have been easier! Here’s all it takes to authenticate SLES 11 to Windows Server 2008 based Active Directory. During the initial install of SLES, I performed the following:

  • Selected samba-client and winbind during the software installer phase
  • Added my domain’s DNS servers to the intitial network config using NetworkManager
  • Ensured I had the right DNS search suffix (the name of my domain: base.netnerds.net)

Surprisingly, I didn’t even have to configure samba after my install was completed. I was prompted to join the domain during the initial OS install and everything went as expected. Here are the settings I used:

samba

I logged in using the domain\username format and this too, worked as expected:

login as: base\chrissy
Using keyboard-interactive authentication.
Password:
Creating directory '/home/BASE/chrissy'.
Creating directory '/home/BASE/chrissy/bin'.
Creating directory '/home/BASE/chrissy/.fonts'.
Creating directory '/home/BASE/chrissy/.mozilla'.
BASE\[email protected]:~>

Next up, setting up NTLM pass-through authentication in Apache!

Update: If you plan to use Kerberos, I recommend you skip straight to using Likewise for all of your authentication needs. I had nothing but headaches from reported bugs with SuSe’s built-in Samba and krb5/Kerberos.

Chrissy is a PowerShell MVP who has worked in IT for nearly 20 years, and currently serves as a Sr. Database Engineer in Belgium. Always an avid scripter, she attended the Monad session at Microsoft’s Professional Developers Conference in Los Angeles back in 2005 and has worked and played with PowerShell ever since. Chrissy is currently pursuing an MS in Systems Engineering at Regis University and helps maintain RealCajunRecipes.com in her spare time. She holds a number of certifications, including those relating to SQL Server, SuSE Linux, SharePoint and network security. She recently became co-lead of the SQL PASS PowerShell Virtual Chapter. You can follow her on Twitter at @cl.

Posted in Active Directory, Linux, Networking, Security
4 comments on “SuSE (SLES) 11 Works Flawlessly with Windows Server 2008 Authentication
  1. Hello Chrissy,

    While Googling I stumbled upon your article. Even though the solution seemed simple, thanks to your tips I finally got it working :D

    greetings from the Netherlands,
    Martijn Bouwman.

  2. Kevin says:

    There is another problem..____Using an SLED 11 GNOME desktop__When i tried to login in the domain i created (ive already type the user name and password)..__there is a note "User not known to the underlying authentication module"..______but when i tried it (the username and password i type in the SLED) on the windows 7 os (also connected in the domain)__it is authoatically login (after i type the user name and password)..____i cant have a screen shot because it is in the login screen of the sled..____can you help me how to fix this?

  3. frankCBA says:

    doesn’t work as easy with debian :-P

1 Pings/Trackbacks for "SuSE (SLES) 11 Works Flawlessly with Windows Server 2008 Authentication"
  1. […] thing is first, setup samba to authenticate to AD. Next, install the OpenSuSE mod_auth_ntlm_winbind […]

Leave a Reply

Your email address will not be published. Required fields are marked *

*