You can modify the Unix attributes that are generated by default when users are Unix-enabled. To change the Login Shell you must have rights to create and delete child objects in the Safeguard Authentication Services application configuration in Active Directory.
To change the default Unix attributes
The window displays the current settings for Unix-enabling users, groups and the method used for creating unique IDs.
The Modify Global Options dialog opens.
The defaults are saved to Active Directory.
Note: Now, when you Unix-enable a user from Active Directory Users and Computers, PowerShell, or the Unix command line, the login shell defaults to /bin/bash. You can customize the other Unix defaults similarly.
The topics that follow show you how to perform Active Directory account administration from Management Console for Unix for hosts that are joined to Active Directory.
This feature, also known as user mapping, allows you to associate an Active Directory user account with a local Unix user. Allowing a local user to log in to a Unix host using Active Directory credentials enables that user to take advantage of the benefits of Active Directory security and access control.
To enable a local user for Active Directory authentication
Note: To set up this local user account, see Adding a local user account.
Note: To set up this Active Directory user, see Adding an Active Directory user account.
You have now mapped a local user to an Active Directory user and the management console indicates that the local user account requires an Active Directory password to log onto the Host in the AD User column.
You can also map multiple Unix users to use a single Active Directory account using the Require AD Logon pane on the All Local Users tab.
To assign (or "map") a Unix user to an Active Directory user
(Click the Directory button to search in a specific folder.)
Note: This task requires elevated credentials.
The Active Directory user assigned to the selected local Unix users displays in the AD User column of the All Local Users tab.
Once you have mapped a local user to an Active Directory user, you can log in to the local Unix host using your local user name and the Active Directory password of the Active Directory user to whom you are mapped.
To test the mapped user login
Click Login to log in to the Unix host with your local user account.
You just learned how to manage local users and groups from Management Console for Unix by mapping a local user account to an Active Directory user account. You tested this by logging into the Unix host with your local user name and the password for the Active Directory user account to whom you are mapped.