![]() If necessary, migrate the user to Active Directory. Check whether the same user is in the /etc/passwd file.If you are using AD Bridge, also ensure that the user is associated with the correct cell. Check Active Directory to make sure the user has an account.If the computer is not joined to a domain, it displays only the hostname. This displays the hostname, current domain, and distinguished name, which includes the OU to which the computer belongs. Check whether the computer is joined to the domain by executing the following command as root:.opt/pbis/bin/find-user-by-name example\\hab Verify that the AD Bridge service can exchange data with AD by executing this command: /opt/pbis/bin/get-dc-name FullDomainName Execute the following command with the user account that you are troubleshooting: /opt/pbis/bin/kdestroy Check the Status of the AD Bridge Authentication ServiceĬheck the status of the authentication service on a Unix or Linux computer running the AD Bridge Agent by executing the following command as the root user: /opt/pbis/bin/lwsm status lsass If the result looks like this.Ĭheck Communication between the AD Bridge Service and AD Destroy the Kerberos CacheĬlear the AD Bridge Kerberos cache to make sure there is not an issue with a user's Kerberos tickets. You may need to clear the cache to ensure that the client computer recognizes the user's ID.įor more information, please see the AD Bridge Installation Guide. ![]() When logging on from the command line, you must escape the slash character with a slash character, making the logon form DOMAIN\\username.Įxample: \\hoenstiv Clear the Cache When troubleshooting a logon problem, use your full domain credentials: DOMAIN\username. Make Sure You Are Joined to the DomainĮxecute the following command: /opt/pbis/bin/domainjoin-cli query Check Whether You Are Using a Valid Logon Form However, the syntax of the commands on Unix might be slightly different. The tests can also be used to troubleshoot logon problems on a Unix computer. ![]() To troubleshoot problems logging on a Linux computer with Active Directory credentials after you joined the computer to a domain, perform the following series of diagnostic tests sequentially with a root account. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |