uxconsole -register Register UNIX Computers in Active Directory
Valid on UNIX
capamsc141
Valid on UNIX
Use the
uxconsole
command to register a UNIX host in Active Directory. A privileged account (not necessarily administrator account) user can register a UNIX host in Active Directory. To let the Active Directory users log in to the UNIX host, activate the UNIX Authentication Broker.You can run the command multiple times on the same computer.
Example:Run the command to repair the UNIX Authentication Broker host registration with Active Directory when the keytab file is deleted.
The
uxconsole
command has the following format:uxconsole -register -a name [-w pass] [-d domain] [-t site] [-v level] [-n] [-o container] [-s server] [-p #] [-sso] [-i #] [-h] [-k] uxconsole -register -owt -d domain -a name [-w pass] [-v level] uxconsole -register -owt -pupm -d domain -a name -epname name [-eptype type] [-container name] [-v level] uxconsole -deregister -owt -d domain [-a name] [-v level] uxconsole -deregister -a name [-w pass] [-d domain] [-v level] [-o container] [-s server] [-p #]
- -registerSpecifies that Active Directory registers UNIX Authentication Broker.
- -deregisterSpecifies that Active Directory deregisters UNIX Authentication Broker.
- -anameSpecifies a user with privileges to register computers in Active Directory.Default:administrator
- -epnameSpecifies an endpoint where the privileged account originates.
- -eptypeSpecifies the endpoint type. If not otherwise specified, the endpoint type is Windows Agentless.
- -wpassSpecifies the password of a user with privileges to register computers in Active Directory.
- -dDefines the domain name that the Active Directory is part of.
- -hDisplays the program help.
- -nSpecifies that the uxauthd agent runs after the registration process completes.
- -ocontainerSpecifies the Active Directory container name where you register the UNIX computer. The Active Directory container must exist before you register the UNIX computer.
- -containerSpecifies the name of the container where you register the privileged account.
- -owtSpecifies a position-dependent argument that requests the proxy user key management. Register the UNIX Authentication Broker endpoint before using this option.
- -p#Specifies the Active Directory listening port number.
- -pupmSpecifies to use Shared Account Management integration.
- -s serverSpecifies the Active Directory Server name.
- -ssoSpecifies that the uxconsole manages Kerberos files for Single Sign On (SSO)
- -t siteDefines the Active Directory site that contains Domain Controllers (DCs). The UNIX Authentication Broker uses DCs to communicate with the Active Directory. The UNIX authentication broker writes the site name to the ad_site configuration setting in the ad section of theuxauth.inifile. We recommend that you do not specify this option. If you do not specify this option, the utility automatically selects the best Active Directory site to use.The values in theignore_dc_listandlookup_dc_listconfiguration settings affect how UNIX Authentication Broker implements Active Directory site support.
- -v levelDefines the verbose level to use during the installation process.
- -i #Specifies the Key Distribution Server (KDC) configuration mode.Limits:0 - Use host name for the registered domain KDC in Kerberos configuration1 - Use IP address instead of hostnames for KDC in Kerberos configuration2 - Use DNS-only KDC lookupDefault:0
- -kSpecifies to skip the key version when the Active Directory fails to increase the key version on the Kerberos token.
Example: Register a UNIX Host in Active Directory
The example shows how to register a UNIX computer in Active Directory by providing the following information:
- User name (-a administrator)
- Password (-w admin)
- Set the verbosity level (-v 3)
- Specify that the UNIX Authentication Broker agent does not run at the end of the installation (-n)
- Define the name of the container in Active Directory (-o OU=COMPUTERS), where the computer object representing the endpoint locates.The container must exist before you register the UNIX computer in Active Directory:
./uxconsole -register -a administrator -w admin -v 3 -n -o OU=COMPUTERS
For assistance while registering the UNIX host on Active Directory, refer to the following topics: