active directory – Noobient
Menu

Tag: active directory

PostgreSQL 11 with Active Directory over SSL on CentOS 7

Preamble First of all, I’d like to thank the crew of #postgresql and #centos on freenode for all the help, much appreciated! The scenario is the Foobar company with Active Directory as the directory service. They use CentOS 7 application servers, among them PostgreSQL. The company’s domain name is foobar.com, and the corresponding AD domain […]

Integrating CentOS 7 with Active Directory

This guide builds largery on the Ubuntu Active Directory tutorial, so if something’s not clear, please make sure to check that one, too. Here’s the script which you can run on your CentOS hosts. Make sure to replace ad.foobar.com and AD.FOOBAR.COM occurences with your actual domain. Also, this script uses AD\Administrator, if that doesn’t suit […]

AD integration changes in Ubuntu 16.04

I’ve written an extensive tutorial about integrating Ubuntu 15.10 with Active Directory. Today I’ve deployed our first testbed comp with 16.04 (beta2) installed. Joined it to AD, set up FDE, everything’s fine. Then the user complains he cannot sudo. Hmm, lemme check the sudoRole for typos. Nope, it’s fine. Let’s delete and recreate it. It […]

Integrating Ubuntu with Active Directory

Prelude You can run, but you can’t hide, sooner or later it’ll knock on your door. I was assigned with the task of providing our colleagues with Linux workstations. Previously we had Windows, which is no biggie. Then came OS X, which is far from being perfect, but still reasonably doable. And then came Linux… […]

Azure AD Connect hits GA

I just received an email from Azure telling me that from now, Azure Active Directory Connect is generally available. In human language this means that AD Connect is finally out of beta. Since my experiences with the previews were less than stellar I kept back any previews after Preview 2. But now I finally gave […]

Office 365 – User restore failed

Prelude For whatever reason your users may end up in the recycle bin. Normally you can restore them easily by just clicking on Restore user on the Office portal. But sometimes you may get something like this: User restore failed The user can’t be restored at this time. Correlation ID: … Or visually: I’ve gone […]

Azure AD Connect Best Practices

The disaster I had gave me some good pointers regarding how one should configure and use their Office 365 tenant and on-premises AD together. Here’s some suggestions: Always use a separate “in cloud” global admin account for directory synchronization. In case you lose your synced admin accounts, you’ll still have another admin that can recover […]

Azure AD Connect Disaster Recovery

Prelude Yeah, I know, the title’s already promising enough. And yeah, it did happen. At some point in my previous post I mentioned that after group filtering failed on me I reverted to OU filtering. So at the time I had 2 filters in place. This may or may not be the cause of what […]

Azure AD Connect Preview 2

Overview I’ve just covered my experience with Azure AD Connect Preview 1, but here’s the new preview already. Some highlights: In-place DirSync upgrade is supported. Group-based filtering, in addition to OU-based filtering I’ve demonstrated with Preview 1. Syncing of on-premises custom attributes by extending the Azure AD schema. A lot of writeback stuff like user, […]

Migrating from DirSync to Azure AD Connect

Preface So DirSync is a thing of the past now. It’s deprecated but it’s supposed to keep working. For us, it didn’t. Password sync just never occured, so when a new colleague arrived at our office needing a new account I was basically forced to upgrade to the newcomer dubbed Azure AD Connect, or Azure […]