From 84b38b59c4f6c3108866e573991410de44a8d1fc Mon Sep 17 00:00:00 2001 From: PierreGoude Date: Wed, 14 Jun 2017 13:40:05 +0200 Subject: [PATCH] Create README.md --- README.md | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 9e60506..e7b5b14 100644 --- a/README.md +++ b/README.md @@ -9,11 +9,21 @@ Complete steps 3. set hostname on you computer to linuxcomputer (hostname and hosts files) and reboot 4. git clone this script and run. -execute the script with sudo sh ADconnection.sh, then choose if client or server. +execute the script with sudo sh ADconnection.sh, It will detect if it is a client or a server. the script will find your domain name if existing after that authorise with a admin user. make sure to read carefully and also read built in help in the script. +For security this script creates an ssh allow file so users that are not in the correct AD group can login, +NOTICE! if your user is not administrator you MUST edit annd add current user in the ssh-allow section. +If you current local user is not in the SSH-ALLOW file it will be BANNED from the computer! + +WORK IN PROGRESS. : I will add the ability to choose if you want to dissable SSH-allow, +note: users in other groups will be able to ssh to the client, but will not have sudo rights. + +WORK IN PROGRESS. : +also the ability to choose if clients should have sudo rights or not ( clients will be sudo by default ) + this will make the cleanest setup possible. no @ in names or in home folder home folder will be /home/myad.intra/you User name will be only set as "you" without /myad/you or you@myad.intra. just clean. this is to prevent complications for developers when building code