This is a four step process after the AD external trust is established with the RHEL7 IdM. Which is Authentication part where you can login as an AD user via IdM to the Linux clients/hosts. But to get authorized to be able to execute root level command and to be a root user. Where access like -
"sudo su -" is required as a Linux Administrator.
- # ipa group-add --desc='AD users external map' ad_users_external --external
- # ipa group-add --desc='AD users' ad_users
- # ipa group-add-member ad_users_external --external "AD_DOMAIN\Administrator"
- # ipa group-add-member ad_users --groups ad_users_external
Happy Linux!
No comments:
Post a Comment