With root privileges, you can manually install a valid license by copying the new license file to the licenses directory on the Unix host.
To install a Authentication Services license manually
launchctl unload /Library/LaunchDaemons/com.quest.vasd.plist launchctl load /Library/LaunchDaemons/com.quest.vasd.plist
Before you join a Unix client to an Active Directory domain, One Identity recommends that you create the application configuration in the domain to which you are joining to utilize full Authentication Services 4.2 functionality. While the Authentication Services Active Directory Configuration Wizard starts automatically to help you configure Active Directory for Authentication Services the first time you start the Control Center, you do not need to have a Windows console to create the application configuration. You can run the vastool configure ad command from the Unix command line to create it. This is typically a one-time process.
Note: You only need to create one Authentication Services application configuration per forest. For more information, see Version 3 Compatibility Mode.
To create the Authentication Services application configuration
# /opt/quest/bin/vastool ad -u <user> configure -d <domain>
By default, Authentication Services creates the application configuration in the Program Data container; however, if you do not have rights to create an organizational unit in the Program Data container, you can create the Authentication Services application configuration in any location you have rights to by specifying the DN (distinguished name) of the creation location, as follows:
vastool -u <user> configure -d <domain> ou cn=myou,dc=example,dc=com
When you create the Authentication Services application configuration, you set the global schema configuration mode to R2 by default. However, you can optionally configure Authentication Services for "schemaless" operation using the schema configure command.
To switch to a schemaless configuration
# /opt/quest/bin/vastool -u <user> schema -d <domain> configure schemaless
The schema configure command only allows you to set the schema mode to either R2 or "schemaless" modes. To set the schema configuration to any other mode, you must do so from the Control Center Preferences.
For full Authentication Services functionality on Unix, you must join the Unix system on which you installed the Authentication Services agent to the Active Directory domain. You can join an Active Directory domain either by running vastool join from the command line or the interactive join script, vasjoin.sh.
Before you join the Unix host to the Active Directory domain, you may want to determine if you are already joined.
To determine if you are joined to an Active Directory domain
# /opt/quest/bin/vastool info domain
If you are joined to a valid domain this command returns the domain name. If you are not joined to a domain, you will see the following error:
ERROR: No domain could be found. ERROR: VAS_ERR_CONFIG: at ctx.c:414 in _ctx_init_default_realm default_realm not configured in vas.conf. Computer may not be joined to domain