Best Tools for Monitoring and Administering your LAN/WAN network better!!!: How to setup and configure Rancid integrated with …:
They covered almost everything there correctly for me but I did run into a few things I had to change..
apt-get install rancid cvsweb cvs
I’m using MS RADIUS for AD user integration and privilege level 15 on login and SSH so I needed to set:
add autoenable * 1
add user * username
add password * userpassword
add method * ssh
I also used “su -s /bin/bash rancid” to change to the rancid user and run all the needed commands from there.
“1 10 * * * /usr/local/rancid/bin/rancid-run”
Edit that time in crontab to run at whatever interval you like.
I used exim4 for mail and it was installed by default. Edit /etc/aliases and restart mail “service exim4 restart”.
Everything pretty much worked out of the box.
More MS RADIUS setup information.
apt-get install likewise-open
User that can join AD should be an EID. The –ou option can also be used to place this in a Organizational Unit.
domainjoin-cli join domain.com UserThatCanJoinAD
domainjoin-cli join –ou path/organizationalUnitName domainName joinAccount
To remove the computer from the domain run:
Edit sudoers to allow users to become elevated users.
root@alb-netmon1:~# visudo # /etc/sudoers
# # This file MUST be edited with the ‘visudo’ command as root.
# # See the man page for details on how to write a sudoers file.
# Defaults env_reset
# Host alias specification
# User alias specification
# Cmnd alias specification
# User privilege specification root ALL=(ALL) ALL
#To add just one user account add the line below with the correct EID. TWCCORP\\e0NNNNN ALL=(ALL) ALL
# Allow members of group sudo to execute any command
# (Note that later entries override this, so you might need to move
# it further down) %sudo ALL=(ALL) ALL
# #includedir /etc/sudoers.d
# Members of the admin group may gain root privileges %admin ALL=(ALL) ALL
#To add an entire group use something like the line below
%domain\\AD_Group ALL=(ALL) ALL
After making changes in visudo restart sudo /etc/init.d/sudo restart
I’m currently only adding single users.
Then to login with SSH and your EID
I also did this for Debian recently but two things are different. I couldn’t find a DEB package and the shell wasn’t set by default. Also Likewise was taken over by another company and has a new name, Power Broker Identity Services.
wget http://www.beyondtrust.com/Technical-Support/Downloads/files/PBISO/7.0.1/886/pbis-open- 126.96.36.1996.linux.x86.deb.sh
chmod +x filename
Run the install ./filename
Read and understand the installation agreement, current license is GPL/GPLv2.
As above add you user to sudo and join to the AD domain. Set a shell if needed, I like bash and wasn’t getting that by default.
opt/likewise/bin/lwconfig LoginShellTemplate /bin/bash