BeyondTrust: Difference between revisions
		
		
		
		Jump to navigation
		Jump to search
		
| m (Kenneth moved page Pbis to BeyondTrust) |  (→Sudo) | ||
| (3 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
| == BeyondTrust AD Bridge Open-Source Community Project == | |||
| BeyondTrust AD Bridge Open is an open-source community project sponsored by BeyondTrust Corporation. It is currently archived and will no longer receive updates. If you are interested in an Enterprise version of this project, please see our AD Bridge product. | |||
| See [[SSSD]] instead | |||
| == SSSD == | |||
| See [[SSSD]] | |||
| == Github == | |||
|  BeyondTrust AD Bridge Open | |||
|  https://github.com/BeyondTrust/pbis-open | |||
|  PROJECT HAS BEEN ARCHIVED | |||
|  This repository has been archived by the owner on Nov 8, 2021. It is now read-only. | |||
|  "We have decided to fork BeyondTrust AD Bridge Enterprise from BeyondTrust AD Bridge Open solution. | |||
|  Please consider BeyondTrust Active Directory Bridge for continued support." | |||
|  https://www.beyondtrust.com/privilege-management/active-directory-bridge | |||
|  https://www.beyondtrust.com/products/active-directory-bridge | |||
| == What is PBIS == | |||
|  "PowerBroker Identity Services" <ref>https://github.com/BeyondTrust/pbis-open/releases/tag/8.8.0</ref> | |||
| Ref:  | |||
| It was renamed / rebranded to "BeyondTrust AD Bridge" in the 9.0 release. <ref>https://github.com/BeyondTrust/pbis-open/releases/tag/9.0.0</ref> <ref>https://github.com/BeyondTrust/pbis-open/commit/54e888873e455aa876f5623b01aa36fedf6506a9</ref> | |||
| == Join Domain == | |||
|  /opt/pbis/bin/domainjoin-cli join AD-DOMAIN USER@AD-DOMAIN | |||
|  /opt/pbis/bin/config UserDomainPrefix AD-DOMAIN | |||
|  /opt/pbis/bin/config AssumeDefaultDomain True | |||
|  /opt/pbis/bin/config LoginShellTemplate /bin/bash | |||
|  /opt/pbis/bin/config HomeDirTemplate %H/%U | |||
| Grand AD users or security groups as 'root': | |||
|  /opt/pbis/bin/config RequireMembershipOf “AD-DOMAIN\<AD-DOMAIN-GROUP>” “AD-DOMAIN\<user>” | |||
| Sudo: /etc/sudoers | |||
|  %DOMAIN\\<AD-DOMAIN-GROUP> ALL=(ALL) NOPASSWD:ALL | |||
| == Latest Release == | |||
| AD Bridge Open 9.1.0.551 | |||
|  pbis-open-9.1.0.551.linux.x86.deb.sh - https://github.com/BeyondTrust/pbis-open/releases/download/9.1.0/pbis-open-9.1.0.551.linux.x86.deb.sh | |||
|  pbis-open-9.1.0.551.linux.x86.rpm.sh - https://github.com/BeyondTrust/pbis-open/releases/download/9.1.0/pbis-open-9.1.0.551.linux.x86.rpm.sh | |||
|  pbis-open-9.1.0.551.linux.x86_64.deb.sh - https://github.com/BeyondTrust/pbis-open/releases/download/9.1.0/pbis-open-9.1.0.551.linux.x86_64.deb.sh | |||
|  pbis-open-9.1.0.551.linux.x86_64.rpm.sh - https://github.com/BeyondTrust/pbis-open/releases/download/9.1.0/pbis-open-9.1.0.551.linux.x86_64.rpm.sh | |||
| Source: | |||
|  https://github.com/BeyondTrust/pbis-open/archive/refs/tags/9.1.0.zip | |||
|  https://github.com/BeyondTrust/pbis-open/archive/refs/tags/9.1.0.tar.gz | |||
| Tag: AD Bridge Open 9.1.0.551 | |||
|  https://github.com/BeyondTrust/pbis-open/releases/tag/9.1.0 | |||
| == Sudo == | |||
|   [root@license-01 sudoers.d]# cat admin |   [root@license-01 sudoers.d]# cat admin | ||
|   # Ansible managed | any changes in this file will be overwritten |   # Ansible managed | any changes in this file will be overwritten | ||
| Line 8: | Line 71: | ||
|   %ENG-INFRA   ALL=(root) NOPASSWD: ALL |   %ENG-INFRA   ALL=(root) NOPASSWD: ALL | ||
|   %eng-infra   ALL=(root) NOPASSWD: ALL |   %eng-infra   ALL=(root) NOPASSWD: ALL | ||
| == keywords == | |||
| [[Category:Linux AD]] | |||
| == keywords == | |||
| [[Category:Linux AD]] | |||
Latest revision as of 05:23, 26 March 2025
BeyondTrust AD Bridge Open-Source Community Project
BeyondTrust AD Bridge Open is an open-source community project sponsored by BeyondTrust Corporation. It is currently archived and will no longer receive updates. If you are interested in an Enterprise version of this project, please see our AD Bridge product.
See SSSD instead
SSSD
See SSSD
Github
BeyondTrust AD Bridge Open https://github.com/BeyondTrust/pbis-open
PROJECT HAS BEEN ARCHIVED This repository has been archived by the owner on Nov 8, 2021. It is now read-only.
"We have decided to fork BeyondTrust AD Bridge Enterprise from BeyondTrust AD Bridge Open solution. Please consider BeyondTrust Active Directory Bridge for continued support." https://www.beyondtrust.com/privilege-management/active-directory-bridge https://www.beyondtrust.com/products/active-directory-bridge
What is PBIS
"PowerBroker Identity Services" [1]
Ref:
It was renamed / rebranded to "BeyondTrust AD Bridge" in the 9.0 release. [2] [3]
Join Domain
/opt/pbis/bin/domainjoin-cli join AD-DOMAIN USER@AD-DOMAIN
/opt/pbis/bin/config UserDomainPrefix AD-DOMAIN /opt/pbis/bin/config AssumeDefaultDomain True /opt/pbis/bin/config LoginShellTemplate /bin/bash /opt/pbis/bin/config HomeDirTemplate %H/%U
Grand AD users or security groups as 'root':
/opt/pbis/bin/config RequireMembershipOf “AD-DOMAIN\<AD-DOMAIN-GROUP>” “AD-DOMAIN\<user>”
Sudo: /etc/sudoers
%DOMAIN\\<AD-DOMAIN-GROUP> ALL=(ALL) NOPASSWD:ALL
Latest Release
AD Bridge Open 9.1.0.551
pbis-open-9.1.0.551.linux.x86.deb.sh - https://github.com/BeyondTrust/pbis-open/releases/download/9.1.0/pbis-open-9.1.0.551.linux.x86.deb.sh pbis-open-9.1.0.551.linux.x86.rpm.sh - https://github.com/BeyondTrust/pbis-open/releases/download/9.1.0/pbis-open-9.1.0.551.linux.x86.rpm.sh pbis-open-9.1.0.551.linux.x86_64.deb.sh - https://github.com/BeyondTrust/pbis-open/releases/download/9.1.0/pbis-open-9.1.0.551.linux.x86_64.deb.sh pbis-open-9.1.0.551.linux.x86_64.rpm.sh - https://github.com/BeyondTrust/pbis-open/releases/download/9.1.0/pbis-open-9.1.0.551.linux.x86_64.rpm.sh
Source:
https://github.com/BeyondTrust/pbis-open/archive/refs/tags/9.1.0.zip https://github.com/BeyondTrust/pbis-open/archive/refs/tags/9.1.0.tar.gz
Tag: AD Bridge Open 9.1.0.551
https://github.com/BeyondTrust/pbis-open/releases/tag/9.1.0
Sudo
[root@license-01 sudoers.d]# cat admin # Ansible managed | any changes in this file will be overwritten %AD\\it-infra ALL=(ALL:ALL) NOPASSWD: ALL
[root@license-01 sudoers.d]# cat pbissudouser # Ansible managed | any changes in this file will be overwritten 1234 ALL=(root) NOPASSWD: ALL %ENG-INFRA ALL=(root) NOPASSWD: ALL %eng-infra ALL=(root) NOPASSWD: ALL