From Fedora Project Wiki
(Red Hat Active Directory Test Bed)
m (Stefw moved page Features/ActiveDirectory/TestingRealmd/Preparation to Features/ActiveDirectory/TestBed: A cleaner name, for linking from test cases)
(No difference)

Revision as of 12:28, 16 October 2012

Testing Fedora 18 Active Directory: Preparation

In order to test realmd with Active Directory, you need the following:

realmd Installed

To install realmd from Fedora 18:

$ sudo yum install realmd

To build and install realmd from source, do something like this:

$ git clone git://
$ cd realmd
$ sh --prefix=/usr --sysconfdir=/etc --libdir=/usr/lib64 --enable-debug
$ make
$ sudo make install
$ sudo restorecon -Rv /etc/dbus-1 /usr/bin/realm /usr/lib64/realmd /usr/share/dbus-1 /usr/share/polkit-1

If you wish to later go back to the Fedora 18 version of realmd, just reinstall realmd:

$ sudo yum reinstall realmd

Active Directory domain

Corporate domain

If you have a real deployed Active Directory domain to test against, this is the best scenario.

In order to test realmd effectively you'll need to be able to create computer accounts in the domain. Sometimes this means you'll have Administrative credentials for the domain. In other cases, you may have been delegated a specific OU which you are able to create accounts in.

To tell realmd to create computer accounts in a specific OU, add something like the following to your /etc/realmd.conf

computer-ou = OU=Linux Computers,DC=domain,DC=example,DC=com

For more details see:

For deeper testing you should be able to access the domain and create accounts.

Personal domain

You can setup your own personal Active Directory domain. Here's how to install Windows Server 2008 for free and set one up:

Note that the Active Directory will need to be appropriately discoverable via DNS, as it would be "in real life". If DNS is not setup for your Active Directory domain, you can also use steps 8 and 9 in the linked setup instructions above to make DNS work appropriately on your test machine for your domain.

In the following documentation we'll use when referring to the domain.

Red Hat Active Directory Test Bed

If you're on the Red Hat internal network, there's an Active Directory server available for testing. Unfortunately, it is not clear whether this can be made available to the public at this time. In addition this works poorly for testing if you're on a VPN. Because the VPN connection must be up before the Active Directory domain is accessible.


However, the Red Hat Active Directory test bed does not yet have DNS configured appropriately. So to you it you need to setup a local caching DNS server:

  • Install bind like so:
# yum install caching-nameserver
  • After the install completes, edit /etc/named.conf and add the following line to your main options section:
forwarders {; /* ... or the address of your ISP DNS server */ };
  • And add this to the end of /etc/named.conf:
zone "" {
        type forward;
        forwarders {; };
  • Restart the named service with:
# systemctl restart named.service
  • Before configuring your host to use the local caching nameserver, test it with commands like:
# host has address
# host has address
  • Once you know it's working, use nm-connection-editor to edit your connection. Choose your connection, and on the IPv4 Settings tab, choose Automatic (DHCP) addresses only. Now set as the DNS servers.
  • You should now be able to test you local server with commands like:
# host has address
# host has address

The following users and groups are available on the Test Bed:

User Member of
Amy Planet Express, Test Users
Bender Planet Express, Test Users
Dwight Test Users
Hermes Planet Express, Test Users
Farnsworth Planet Express, Test Users
Zoidberg Planet Express, Test Users
Kif Test Users
LaBarbara Test Users
Wernstrom Test Users
Fry Planet Express, Test Users
Leela Planet Express, Test Users
Zapp Test Users