Active Directory Authentication

abhishek · 7 September 2022 08:23

Hello,

I have setup thinlinc on Ubuntu 22.04 and working fine with local account.

How do configure active directory authentication. I have used realm to connect system to domain and it is able to authenticate on ssh but not in thinlinc server.

Error, the ssh connection succeeded but the thinlinc server connection failed.

martin · 7 September 2022 11:29

Hello @abhishek

Welcome to the ThinLinc community forum!

Are you able to log in through ThinLinc using a local account?

Error, the ssh connection succeeded but the thinlinc server connection failed.

Is that that full error you receive from the client?
Could you provide snippets from /var/log/vsmserver.log , /var/log/vsmagent.log and /var/log/auth.log from your login attempts with your AD account?

Regards,
Martin

abhishek · 8 September 2022 04:09

tl-pamapp: pam_unix(thinlinc:auth): authentication failure;

pam_systemd(sshd:session): Failed to create session: No such process

This is what I was seeing in logs.

Ran usermod -a -G shadow username and now everything is working as expected.

martin · 8 September 2022 06:32

@abhishek Glad to hear that you got it working. Would you mind share why add the user to the ‘shadow’ group solved this issue for you?

Regards,
Martin

abhishek · 8 September 2022 13:06

We tried to simulate the issue by adding new accounts.

Surprisingly, it worked without shadow command.

Any idea what fixed the issue?

martin · 8 September 2022 13:37

Sorry, no, I have no idea what resolved the issue for you.

Regards,
Martin

abhishek · 14 September 2022 12:30

Going to setup again. Will try to recreate it. Will update the thread.