Find the answer to your Linux question:
Results 1 to 5 of 5
Environment Active DIrectory = Windows 2008R2 Linux Client = rhel 5.3 Query I am able to run the below command with successful result but cannot login in to rhel via ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Mar 2008
    Posts
    70

    Unable to login (in Redhat) via Active Directory username


    Environment
    Active DIrectory = Windows 2008R2
    Linux Client = rhel 5.3

    Query
    I am able to run the below command with successful result but cannot login in to rhel via Active Directory/Windows Domain user account.

    [root@Oracle4_BE2012 ~]# kinit administrator@SCHOOL.COM.PK
    Password for administrator@SCHOOL.COM.PK
    [root@Oracle4_BE2012 ~]# [B]

    [root@Oracle4_BE2012 ~]# wbinfo -t
    checking the trust secret via RPC calls succeeded

    [root@Oracle4_BE2012 ~]# wbinfo -u
    ORACLE4_BE2012+oracle
    administrator
    guest
    krbtgt
    test

    [root@Oracle4_BE2012 ~]# wbinfo -g
    domain computers
    domain controllers
    domain admins
    domain users
    domain guests
    group policy creator owners
    read-only domain controllers
    dnsupdateproxy
    cert publishers
    ras and ias servers
    allowed rodc password replication group
    denied rodc password replication group
    dnsadmins
    schema admins
    enterprise admins
    enterprise read-only domain controllers

    [root@Oracle4_BE2012 Desktop]# wbinfo -a administrator
    plaintext password authentication failed
    error code was NT_STATUS_PIPE_DISCONNECTED (0xc00000b0)
    error messsage was: Named pipe dicconnected
    Could not authenticate user administrator with plaintext password
    challenge/response password authentication failed
    error code was NT_STATUS_PIPE_DISCONNECTED (0xc00000b0)
    error messsage was: Named pipe dicconnected
    Could not authenticate user administrator with challenge/response

    [root@Oracle4_BE2012 Desktop]# wbinfo -a administrator@school.com.pk
    plaintext password authentication failed
    error code was NT_STATUS_PIPE_DISCONNECTED (0xc00000b0)
    error messsage was: Named pipe dicconnected
    Could not authenticate user administrator@school.com.pk with plaintext password
    challenge/response password authentication failed
    error code was NT_STATUS_PIPE_DISCONNECTED (0xc00000b0)
    error messsage was: Named pipe dicconnected
    Could not authenticate user administrator@school.com.pk with challenge/response



    but when I try to login in to rhel from Active Directory user account, I failed. See the below result for reference.

    Incorrect username or password. Letters must be typed in the correct case

  2. #2
    Just Joined!
    Join Date
    Mar 2008
    Posts
    70
    Finally I reached to a point where my Active Directory users are able to ask password from the shell on linux machine but they are not able to get authenticated. See the below for reference. zahid is a user which is created in Active Directory

    root@zahidhaseeb:~/Downloads# ssh zahid@Oracle4_BE2012.SCHOOL.COM.PK
    zahid@oracle4_be2012.school.com.pk's password:
    Permission denied, please try again.
    zahid@oracle4_be2012.school.com.pk's password:

  3. #3
    Linux Engineer
    Join Date
    Apr 2012
    Location
    Virginia, USA
    Posts
    774
    Check out my guide: Join CentOS 6 to Active Directory Domain

    Most of the steps should be the same for RHEL 5.

    Possible quick fixes: Make sure you have enabled pam_winbind and winbindd is actually running.

  4. #4
    Just Joined!
    Join Date
    Mar 2008
    Posts
    70
    Same status. I feel the below could be the problem

    [root@Oracle4_BE2012 ~]# wbinfo -m
    Could not list trusted domains



    administrator@192.168.38.169
    administrator@192.168.38.169's password:
    Permission denied, please try again.
    administrator@192.168.38.169's password:
    Permission denied, please try again.
    administrator@192.168.38.169's password:
    Permission denied (publickey,gssapi-with-mic,password).
    Last edited by z_haseeb; 01-02-2014 at 08:05 AM.

  5. #5
    Just Joined!
    Join Date
    Mar 2008
    Posts
    70
    man wbinfo extract

    Produce a list of domains trusted by the Windows NT server winbindd( contacts when resolving names. This
    list does not include the Windows NT domain the server is a Primary Domain Controller for.



    I feel that dns failed is the real culprit. I spent last few days but no success. Same thing I did in RHEL 6.2 and all things are perfect. Moreover I can resolve any name on the network as the windows domain/DNS is mentioned under resolv.conf but when adding the RHEL on windows I am facing the below problem, dont know yet !!!

    # wbinfo -m
    Could not list trusted domains


Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •