From 3fa5f4b7ca2594a6d5864941db162a3a5abe80a4 Mon Sep 17 00:00:00 2001
From: PierreGoude <pierre@webbhatt.com>
Date: Wed, 19 Apr 2017 07:58:24 +0200
Subject: [PATCH] Update ADconnection.sh

---
 ADconnection.sh | 12 +++++++-----
 1 file changed, 7 insertions(+), 5 deletions(-)

diff --git a/ADconnection.sh b/ADconnection.sh
index fc3e5c7..51408ae 100644
--- a/ADconnection.sh
+++ b/ADconnection.sh
@@ -124,10 +124,9 @@ sudo echo "administrator" >> /etc/ssh/login.group.allowed
 sudo echo "$NetBios"'\'"$myhost""sudoers" >> /etc/ssh/login.group.allowed
 sudo echo "$NetBios"'\'"domain^admins" >> /etc/ssh/login.group.allowed
 sudo echo "administrator ALL=(ALL:ALL) ALL" >> /etc/sudoers.d/sudoers
-sudo echo "%domain^admins ALL=(ALL:ALL) ALL" >> /etc/sudoers.d/sudoers
-sudo echo "%domain^users ALL=(ALL:ALL) ALL" >> /etc/sudoers.d/sudoers
 sudo echo "%$myhost""sudoers ALL=(ALL:ALL) ALL" >> /etc/sudoers.d/sudoers
-sudo echo "%DOMAIN\ admins@$DOMAIN ALL=(ALL) ALL" >> /etc/sudoers.d/domain_admins
+sudo echo "%domain'\ 'users ALL=(ALL:ALL) ALL" >> /etc/sudoers.d/sudoers
+sudo echo "%DOMAIN'\ 'admins ALL=(ALL) ALL" >> /etc/sudoers.d/domain_admins
 #sudo realm permit --groups "$myhost""sudoers"
 therealm=$(realm discover $DOMAIN | grep -i configured: | cut -d ':' -f2 | sed -e 's/^[[:space:]]*//')
 if [ $therealm = no ]
@@ -226,10 +225,13 @@ sudo echo "Verifying the setup"
 sudo systemctl enable sssd
 sudo systemctl start sssd
 echo "session required pam_mkhomedir.so skel=/etc/skel/ umask=0022" >> /etc/pam.d/common-session
+sudo echo "administrator" >> /etc/ssh/login.group.allowed
+sudo echo "$NetBios"'\'"$myhost""sudoers" >> /etc/ssh/login.group.allowed
+sudo echo "$NetBios"'\'"domain^admins" >> /etc/ssh/login.group.allowed
 sudo echo "administrator ALL=(ALL:ALL) ALL" >> /etc/sudoers.d/sudoers
-sudo echo "%domain^admins ALL=(ALL:ALL) ALL" >> /etc/sudoers.d/sudoers
 sudo echo "%$myhost""sudoers ALL=(ALL:ALL) ALL" >> /etc/sudoers.d/sudoers
-sudo echo "%DOMAIN\ admins@$DOMAIN ALL=(ALL) ALL" >> /etc/sudoers.d/domain_admins
+sudo echo "%domain'\ 'users ALL=(ALL:ALL) ALL" >> /etc/sudoers.d/sudoers
+sudo echo "%DOMAIN'\ 'admins ALL=(ALL) ALL" >> /etc/sudoers.d/domain_admins
 therealm=$(realm discover $DOMAIN | grep -i configured: | cut -d ':' -f2 | sed -e 's/^[[:space:]]*//')
 if [ $therealm = no ]
 then