User Tools

Site Tools


cid_closed_directory

This is an old revision of the document!


Closed In Directory CID

CID (Closed In Directory) is a set of bash scripts for inserting and managing Linux computers in Active Directory (AD) domains. Modifications made to the system allow Linux to behave like a Windows computer within AD. You can do things like:

  • Run logon scripts
  • Automatic mounting of network drives (shared folders)
  • Automatic configuration of the printers
  • Offline logon
  • Automatic granting of privileges to users (e.g. access to the sudo command)
  • GUI and CLI tools for managing the Samba server (File and Print Server)
  • Apply disk quota per shared directory (such as Windows Server)

CID consists of four main tools subdivided into two GUI tools (cid-gtk and cid-change-pass-gtk) and two CLI utilities (cid and cid-change-pass). Both pairs contain equivalent features and they all accept the following general options as a argument in the command line:

Option Description
-v, –version Show the version
-h, –help Show the help

Requirements

  • acl (= any)
  • attr (= any)
  • awk (= any)
  • bash (>= 4)
  • cifs-utils (>= 6.4)
  • CUPS (= any)
  • {diff,find,core}utils (= any)
  • grep (= any)
  • gzip (= any)
  • hostname (= any)
  • iproute[2] (= any)
  • Kerberos V5 (>= 1.13)
  • keyutils (= any)
  • mount (= any)
  • pam_mount (>= 2.14)
  • passwd (= any)
  • ping (= any)
  • pkexec (= any)
  • Samba (>= 4.3.11)
  • sed (= any)
  • sudo (= any)
  • systemd (= any)
  • xhost (= any)
  • zenity (>= 3.18.1)

Installation

Open Synaptic and search and install the following packages: cid, cid-base and cid-gtk or open a terminal and digit and install the packages below with this command:

 sudo nala install cid cid-base cid-gtk 

CID-GTK

The cid-gtk is the tool that contains the main features of the program. Through it you can insert your Linux computer in an AD domain and later manage a series of functions in the system.

The available features are described in the following sections.

Join the domain

This function allows you to join the Linux computer to an AD domain. For that, it is necessary to inform the domain data in the respective fields as shown in the table below:

Field Description
Domain Domain name (FQDN).
Hostname Name for computer account that will be created in AD. If not specified, the account will be created with the same hostname defined in the system.
Organizational Unit Optionally, you can specify an Organizational Unit where the computer account will must be created when join it the domain. If the OU is not entered or is not found, the computer account will be created in the default container (computers).
User Domain administrator user.
Password User password.
Mode Select one of two join modes: Default or Advanced. Default mode is adopted if no selection is made. Advanced mode opens a form that allows you to customize the settings that the CID will perform on the system during the process of joining the domain. All configuration options available in this mode are directly opposite to the settings adopted in the Default mode.

Note: Before modifying the system files, the CID makes a backup in the /var/lib/cid/backups/ori directory.

cid_closed_directory.1727512161.txt.gz · Last modified: 2024/09/28 10:29 by team