You can use LDAP authentication against Windows Active Directory by configuring a System Security Services Daemon (SSSD) in the Linux virtual machine.
Use the following high-level steps to implement the SSSD LDAP authentication solution.
Note: To perform an instant-clone offline domain join, you must use one of the supported authentication methods: PowerBroker Identity Services Open (PBISO) authentication or Samba offline domain join. The SSSD LDAP authentication solution is not supported.
Procedure
- To enable LDAPS (Lightweight Directory Access Protocol Over Secure Socket Layer), install the Certificate Services on the Active Directory server.
- To use LDAP authentication directly against the Microsoft Active Directory, configure the SSSD in the Linux virtual machine.
