How to Join Linux VM with Windows Active Directory | User Management

Описание: Prerequisite, need to have a domain and domain controller ready.

1- Create a New VM Linux VM or if you already have one, proceed to next step.

2- Make sure VM is on the same network and is able to ping the DC.

3- Add the DNS for Linux IP address of DC, using nmtui steps will be shown in video and to check when correct DNS entry is added run cat /etc/resolv.conf

4- Add entry for DNS in /etc/hosts for DC so it can resolve both forward and reverse lookup

5- Install Extra Packages for Enterprise Linux (EPEL) repo running as root yum install epel-release -y

6- Update all the Packages and Dependency running as root yum update -y to check ip address ip addr show

7- To install the required packages

yum install realmd and once the package is installed run realm list it will not show any domain as it is not joined to any domain yet, if joined already this will show the output with some details for domain

To discover domain we use command realm discover dc name or ip address in our case will be realm discover 10.5.0.4 or dc01.cloud.com both will work. This command output will also show what packages are required.

yum install sssd -y will install the required packages and dependencies

To join realm join --client-software=sssd domain_controller_hostname_or_ip -U domain_admin


in our case that will be realm join --client-software=sssd 10.5.0.4 -U cloud and enter the password for domain admin account, run realm list and this will show the output of the domain that is now joined.


Now restart the sssd service service sssd restart


now to check for any user in our case lets check our domain admin user id [email protected] and this will show membership and other groups information

lets now add members of all users in this group to sudoers file so they can run sudo command for admin stuff.

our group name is Linux Admin and now we will add this group to sudoers file so any user in this group can run sudo command

%[email protected] ALL=(ALL) NOPASSWD:ALL and to add this we use visudo command and now lets test by switching to Linux user which is also added in that group for sudoers su [email protected]