[sssd] config_file_version = 2 services = nss, pam domains = mydomain.com
[nss] filter_users = root,named,avahi,dbus,radiusd,news,nscd
[pam]
[domain/mydomain.com] ad_domain = mydomain.com krb5_realm = MYDOMAIN.COM realmd_tags = manages-system joined-with-adcli cache_credentials = True id_provider = ad krb5_store_password_if_offline = True default_shell = /bin/bash ldap_id_mapping = True use_fully_qualified_names = True enumerate = False auth_provider = ad access_provider = ad ad_gpo_access_control = permissive
sudo useradd -m username
sudo authconfig --enablesssd --enablesssdauth --enablemkhomedir --update
sudo systemctl restart sssd.service
完成以上步骤后,您应该能够使用Active Directory域用户登录Linux系统。