Setup Active Directory Authentication in Proxmox 2
Category : How-to
Proxmox 2 makes setting up AD authentication simple if you have the AD server names. AD only provides the authentication and does not import or automatically create each user. You will still need to add each user to Proxmox before they can login.
Click on the Datacenter folder on the left hand side and click Authentication. Click Add and then Active Directory Server.
Enter the following details into the Add: Active Directory Server dialogue box and click Add.
- Realm: the name to use for this authentication server.
- Domain: AD domain name which holds the users which will be used for authentication.
- Comment: optional attribute – note this will show up on the main login dialogue box.
- Default: tick to make this the default authentication method.
- Server: AD server IP or hostname
- Fallback Server: secondary AD server IP or hostname
- Port: keep as Default unless your AD server port has changed.
- SSL: keep unticked unless you require SSL communication to the AD server.
Click the Groups tab and then Create to create a new group on your proxmox server for your AD users. Enter a Name for this group and click Create.
Click the Permissions tab, then click Add and Group Permission.
Enter the settings as per below and click Add.
- Path: the path on the server tree which this group can access. ‘/’ is the top of the hierarchy and can therefore access the full server.
- Group: the group you created in the previous step.
- Role: the role, or access level users of this group will have.
- Propagate: use these permissions for any child objects.
You can now Logout and log back in as an Active Directory user. Make sure your Realm is set to the Realm you created in the first steps of this tutorial.
If you need to log back in without AD, set your login Realm to Linux PAM standard authentication.
Leave a Reply