I should add that your AD user objects need to have the POSIX attributes for UID and GID or Unix will not honor them.
Walter -- Walter Rowe, Division Chief Infrastructure Services, OISM Mobile: 202.355.4123 On Nov 15, 2022, at 7:16 AM, 'Rowe, Walter P. (Fed)' via Ansible Project <[email protected]<mailto:[email protected]>> wrote: Look at SSSD for joining your Linux machine to AD. We use it and find it very reliable. It also enables use of smart card for SSH logins if your public keys are populated in your AD user objects if you work in an environment that requires smart card login (2-factor). Walter -- Walter Rowe, Division Chief Infrastructure Services, OISM Mobile: 202.355.4123 On Nov 15, 2022, at 12:39 AM, David Logan <[email protected]<mailto:[email protected]>> wrote: Hi Chris, I use PowerBroker to provide this sort of functionality. This auths to AD and when I show my groups at the command line, all AD and local groups are shown. PowerBroker has the AD user id and this can be added to the group in /etc/group. What are you trying to do? Regards David On Tue, 15 Nov 2022 at 09:47, 'Chris Bidwell - NOAA Federal' via Ansible Project <[email protected]<mailto:[email protected]>> wrote: Hi all, Is there a way to add an AD user to a local linux group? the user function doesn't work because it's only looking in /etc/passwd for this user. -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CAHKi8CgCE-AJQ0UH%2B4p5QPi%2BwN0zOi9SZ1jcWJsFZCGgM_CQqQ%40mail.gmail.com<https://gcc02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgroups.google.com%2Fd%2Fmsgid%2Fansible-project%2FCAHKi8CgCE-AJQ0UH%252B4p5QPi%252BwN0zOi9SZ1jcWJsFZCGgM_CQqQ%2540mail.gmail.com%3Futm_medium%3Demail%26utm_source%3Dfooter&data=05%7C01%7Cwalter.rowe%40nist.gov%7C73f16d82896043c0983908dac7034dbd%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C0%7C638041114268112354%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=b1UKKYc6GWp9FGGaDJsbxLZAszA9HGozp3mURMK2Bx0%3D&reserved=0>. -- if in trouble, or in doubt run in circles, scream and shout -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/CA%2B8iFp7GLJ43hNcOqSvqXO05cMJKEcVVR-n1fubVe-H37xjcxg%40mail.gmail.com<https://gcc02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgroups.google.com%2Fd%2Fmsgid%2Fansible-project%2FCA%252B8iFp7GLJ43hNcOqSvqXO05cMJKEcVVR-n1fubVe-H37xjcxg%2540mail.gmail.com%3Futm_medium%3Demail%26utm_source%3Dfooter&data=05%7C01%7Cwalter.rowe%40nist.gov%7C73f16d82896043c0983908dac7034dbd%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C0%7C638041114268112354%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=YSzO6kmronOLQnW1n2o5GRsNvJdw9ouG5H1o59pbhrY%3D&reserved=0>. -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]<mailto:[email protected]>. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/22DEC43D-F711-46C6-88C5-0EF6763EBAC8%40nist.gov<https://gcc02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgroups.google.com%2Fd%2Fmsgid%2Fansible-project%2F22DEC43D-F711-46C6-88C5-0EF6763EBAC8%2540nist.gov%3Futm_medium%3Demail%26utm_source%3Dfooter&data=05%7C01%7Cwalter.rowe%40nist.gov%7C73f16d82896043c0983908dac7034dbd%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C0%7C638041114268112354%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=GUCmUrchCNBF7TdWerX9JxlRGysbGrVc%2BAKsRccVuBw%3D&reserved=0>. -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/88A68BCA-7900-4F17-A4D7-1F306ABC0D12%40nist.gov.
