Ubuntu has official Microsoft AD support and allows domain joining during setup. There are downsides to Ubuntu as well, though, so if that’s not an acceptable answer just know support exists and can likely be ported to anything with some effort.
Yeah, but I try and keep as little MS as possible, so my DC is a Linux system, which works fine for LDAP and MS systems joining, but somewhat ironically I’ve yet to be able to get a Linux system joined to it. They actually have a helper app even outside of sssd but it seems to be poorly maintained. Was trying Bazzite again today based on another comment but no luck so far.
Sweet, will have to take a further look at that. Had set it up to check the state of Nix games and it seems to be pretty decent (last I really looked was when StarCraft was still a big thing). Didn’t see anything in the settings about ldap/ad auth in my messing about though.
Big thing holding me up is domain auth. Someone had decent luck getting something like Bazzite joined to a DC without major manual work?
Ubuntu has official Microsoft AD support and allows domain joining during setup. There are downsides to Ubuntu as well, though, so if that’s not an acceptable answer just know support exists and can likely be ported to anything with some effort.
Yeah, but I try and keep as little MS as possible, so my DC is a Linux system, which works fine for LDAP and MS systems joining, but somewhat ironically I’ve yet to be able to get a Linux system joined to it. They actually have a helper app even outside of sssd but it seems to be poorly maintained. Was trying Bazzite again today based on another comment but no luck so far.
Not bazzite specifically, but I have joined Linux systems to LDAP with the SSSD module which is…alright to enable and config in AD
I have joined MacOS to AD as well and THAT was like pulling teeth LMAO
Can confirm Bazzite is just fine with domain auth, no special intervention required.
Authing against a Synology NAS domain which is presumably running Samba under the hood.
Sweet, will have to take a further look at that. Had set it up to check the state of Nix games and it seems to be pretty decent (last I really looked was when StarCraft was still a big thing). Didn’t see anything in the settings about ldap/ad auth in my messing about though.
It’s just the usual sssd setup, and even without manual futzing with config files.
I’ve tried before, that sounds horrible, why are you doing that to yourself.
I’ve worked at not small companies who still thought that was too much work to mess with.
Largely because half the services I host are tied to a Univention DC, and so are the current Windows client machines, I’d like to maintain that state.
I know Ubuntu has an AD option when you set it up, but it doesn’t seem to work with any of the ‘AD compatible’ replacements I’ve tried.