How to fix the Active Directory Authentication Issue with Ubuntu 16.04 in AWS

amazon-web-services amazon-ec2 active-directory
13,680

I have had the same issue with joining my Ubuntu 16.04 machine and all I had to do to resolve the problem is set the rdns flag to false in the krb5.conf as shown below:

/etc/krb5.conf

[libdefaults]
 dns_lookup_realm = false
 ticket_lifetime = 24h
 renew_lifetime = 7d
 forwardable = true
 rdns = false
# default_realm = EXAMPLE.COM
 default_ccache_name = KEYRING:persistent:%{uid}

Once you have added the line, you can join the machine to the domain by using the command:

sudo realm join -U [email protected] example.com --verbose

Share:
13,680
Anish Varghese
Author by

Anish Varghese

Updated on June 26, 2022

Comments

  • Anish Varghese
    Anish Varghese almost 2 years

    While trying to manually join a Linux Instance of Ubuntu 16.04 in AWS Manged Active Directory using the tutorial https://docs.aws.amazon.com/directoryservice/latest/admin-guide/join_linux_instance.html, the authentication to the realm succeeded, but after that I am getting this error while trying to join the UBuntu 16.04 instance to AD:

    Couldn't authenticate to active directory: SASL(-1): generic failure: GSSAPI Error: An invalid name was supplied (Success)
adcli: couldn't connect to ad.nettracer.aero domain: Couldn't authenticate to active directory: SASL(-1): generic failure: GSSAPI Error: An invalid name was supplied (Success)
! Insufficient permissions to join the domain
realm: Couldn't join realm: Insufficient permissions to join the domain

    however, the same is working for CentOS.

    Is there is anything wrong happens from my end?

  • Joe
    Joe almost 5 years
    Wow, just wow. Every time I think I understand integrating Linux and Windows environments I am humbled.
  • Jay
    Jay over 3 years
    This answer saved me quite a bit of time. To add to the answer: I'm starting a VM on AWS with Ubuntu 20.04, so in the cloud-init user-data (the startup file), I'm joining the domain. For anybody that must join from a startup file: Before the line with echo "password" realm join -U admin domain.com, I've added sed -i -e 's/\[libdefaults\]/[libdefaults]\n\trdns = false/g' /etc/krb5.conf, which edits /etc/krb5.conf to add rdns = false, as this answer states.
  • symcbean
    symcbean over 3 years
    I had the same error on Linux Mint 20 running on my own infrastructure. There was no /etc/ktb5.conf, but creating the file with content as above appears to have resolved the problem.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How do I keep my Amazon Linux EC2 instance /var/log/messages from being filled with dhclient and ec2net messages?
Non-Windows instances with a virtualization type of 'hvm' are currently not supported for this instance type : [AWS Cloudformation]
Cannot connect to Cloudera Manager, not listening on port 7180
several t2.micro better than a single t2.small or t2.medium
Amazon RDS unable to execute SET GLOBAL command
AWS credentials not working - ~/.aws/credentials
How to scp to ec2 instance via ssm agent using boto3 and send file
Loading credentials JSON with AWS SDK Results in Error
AWS ALB Health Check 404
No Instances found when trying to use AWS Console and EC2 Run Command for Windows