Episode 6 - An Open Source Domain Controller and Active Directory system with Zentyal!
Рет қаралды 92,353
Күн бұрынAs we build out our business running solely on open source, it's important to keep in mind that our clients may not be as open to using an open source operating system, and support for Windows will likely be very important.
Today I bring you Zentyal, an open source, self hosted alternative to the Windows Domain Controller and Active Directory setup.
======== LINKS ========
Zentyal Server Homepage
zentyal.com/
Zentyal Server Download
zentyal.com/community/
Get the AwesomeOpenSource Merchandise
awesomeopensource.creator-spr...
Support my Channel and ongoing efforts through Patreon:
www.patreon.com/bePatron?u=23417
Buy Me a Coffee or Beer
paypal.me/BrianMcGonagill?cou...
======== TIMESTAMPS ========
00:00 Beginning
00:09 Introduction to Zentyal
03:50 Getting the ISO on Proxmox
04:30 Creating our Zentyal VM
06:10 Zentyal Install
07:45 Thank you to my Subscribers and Patrons over at Patreon
08:23 Reboot after Install
08:35 The Zentyal First Run Wizard and Web UI
13:22 A warning about the Install Wizard
17:40 The Zentyal Dashboard
20:30 Setting Up Domain Users and Groups
23:38 Setting Up Windows for Domain Login
29:52 Setup Ubuntu for Domain Login
=== Contact ===
Twitter: @mickintx
Telegram: @MickInTx
Mastodon: mastodon.partecipa.digital/ @MickInTX
Try out SSDNodes VPS Services! Amazing Specs for incredibly low costs. I'm running a 32 GB RAM / $ CPU Server for only $9 a month! Seriously. FOr long term server usage, this is the way to go!
www.ssdnodes.com/manage/aff.p...
Get a $50.00 credit for Digital Ocean by signing up with this link:
m.do.co/c/a6a61ae55242
Use Hover as your Domain Name Registrar to get some great control over you domains / sub-domains:
hover.com/SHPaiirr
Support my Channel and ongoing efforts through Patreon:
www.patreon.com/bePatron?u=23...
What does the money go to?
To Pay for Digital Ocean droplets, donations to open source projects I feature, any hardware I may need to purchase for future episodes (which I will then give to a subscriber in a drawing or contest).
=== Attributions ===
Intro and Outro music provided by www.bensound.com
@garryebenjamin2323 Жыл бұрын
Just saw your video and it is AWESOME. I've been looking for a way to implement AD without all the hassle of Microsoft and their licensing schemes for servers. As an IT Consultant I cater mostly to Small to Medium sized business and honestly the cost of licensing alone can be the biggest deterrent. I made the decision to look into and implement Opensource and its changed my business for the better believe me. So far, I have not been disappointed and neither are my clients so thank you for these great videos and the time you have taken to do the research so that you can share this information with us all. I look forward to more episodes of "Building a Business on Open Source". Let's keep building the dream we dream.
@AwesomeOpenSource Жыл бұрын
I'm so glad you are getting something out of the series. I believe, that the more we all use open source, and eventually contribute back to it, then the more it can become the norm.
@chadmarkley Жыл бұрын
I have loved this entire series!
@AwesomeOpenSource Жыл бұрын
So very happy to hear that. Stay tuned for more, and more, and more!
@wartlme Жыл бұрын
I like open source. Thanks for posting. Glad this showed up in my feeds.
@AwesomeOpenSource Жыл бұрын
I'm glad it did too! Thanks!
@michaelamos75 Жыл бұрын
Wow, this is exactly what I have been looking for while struggling through FreeIPA and SAMBA4.
@AwesomeOpenSource Жыл бұрын
I hope this will help ease your struggles my friend.
@bobwong8268 Жыл бұрын
👍👍👍👍👍Thx for this Awesome Series! This can be the beginning of something really Great & Awesome🍷🍾 Cheers!
@AwesomeOpenSource Жыл бұрын
Glad you enjoy it!
@zippi777 Жыл бұрын
Great job man! Thanx for this AWESOME guide! 😃
@AwesomeOpenSource Жыл бұрын
Glad it helped!
@parthdholakiya1814 6 ай бұрын
Perfect Step by step guide
@AwesomeOpenSource 6 ай бұрын
Glad it was helpful!
@dawnS33ker Жыл бұрын
Thank you for doing this video. Awesome
@AwesomeOpenSource Жыл бұрын
My pleasure!
@wizecajurao775 Жыл бұрын
Thank you! Great help.
@AwesomeOpenSource Жыл бұрын
You're welcome! Glad it helped.
@nicoladellino8124 Жыл бұрын
Very nice video, TNX.
@AwesomeOpenSource Жыл бұрын
Glad you like it!
@tropicalgeek2787 Жыл бұрын
Great video! Zentyal is super easy to setup, I've been using it for awhile. I didn't see you include it but it also works with MacOS just in case anyone has that question.
@AwesomeOpenSource Жыл бұрын
Thanks for the info!
@surisurendrababu Жыл бұрын
Hi I need help can you please help me in zentyal part
@bdjobstv8575 Жыл бұрын
That was great. Thank you.
@AwesomeOpenSource Жыл бұрын
You're very welcome!
@tokoshiro5 Жыл бұрын
man, so much stuff in this channel, I hope I can watch and absorb it all ahahhaha (strugglin to finish my home server but a lot to do in my irl career etc damn) thanks a lot
@AwesomeOpenSource Жыл бұрын
Totally understand my friend. I have a full time job, plus I do some IT work for a few clients on the side, make these videos, and have a family I love to spend time with. Life is a giant, delicious sandwich, so take one bite at a time.
@tokoshiro5 Жыл бұрын
@@AwesomeOpenSource yep, sometimes I get overwhelmed, but I just need to breath a little I got super curious about your physical hardware, maybe that would be a cool video : your home's infrastructure :D (I've saw some videos about Pis, yet curious to see if you have some xeon etc there ahaha)
@AwesomeOpenSource Жыл бұрын
@@tokoshiro5 the hardware video is coming next week. Stay tuned.
@nalle475 Жыл бұрын
Nice to see the new improved installation. Installed a few more than 10 years ago, it wasn’t this easy, definitely not. Our bulk was MS and a few ClerOS that I really liked and then some odd Zentyal now and then. Z was a good set and it seems to have matured exceptionally well. Setting upp MS Office with centralized resources was easier on Zentyal and Clear. 10-15 years ago having data on a server was more secure than on PC’s in many ways.
@AwesomeOpenSource Жыл бұрын
Thanks for sharing
@unmatal Жыл бұрын
Good Demo Thank you
@AwesomeOpenSource Жыл бұрын
Thanks for watching!
@belallbasha Жыл бұрын
This helped a lot thank you
@AwesomeOpenSource Жыл бұрын
Happy to help.
@mrj80 Жыл бұрын
Well done!
@AwesomeOpenSource Жыл бұрын
Thank you.
@nunoalexandre6408 Жыл бұрын
Brilliant!!
@AwesomeOpenSource Жыл бұрын
Thanks!
@MsRope93 Жыл бұрын
Thanks a lot fro this review.
@AwesomeOpenSource Жыл бұрын
My pleasure
@thush_boy Жыл бұрын
working fine thank you
@AwesomeOpenSource Жыл бұрын
You're welcome!
@UnmuteCommunity Жыл бұрын
thanks alot for this video!!
@AwesomeOpenSource Жыл бұрын
You're welcome!
@SB-qm5wg Жыл бұрын
Very cool. I think one missing item that would drive MIS away is lack of group policy controls.
@AwesomeOpenSource Жыл бұрын
So, I didn't get into all of the nitty gritty yet, but you can actually setup one of your Windows machines to set and dispense group policies, and more.
@hatemabdulghani1511 Жыл бұрын
now i am in a good mood
@AwesomeOpenSource Жыл бұрын
Excellent place to be.
@webertonteixeira9098 Жыл бұрын
Thanks Bruu
@AwesomeOpenSource Жыл бұрын
You bet.
@arcadiosincero Жыл бұрын
I manually setup a Samba active directory server to act as a centralized authentication server for my Linux and Windows VMs. I chose this approach because Windows can authenticate against it right out of the box, and Linux can authenticate against it by simply installing the appropriate PAM module. While setting it up by hand was educational, it was relatively tedious. Plus theres no pretty web UI to admin things. I think I will switch to Zentyal.
@AwesomeOpenSource Жыл бұрын
Give it a shot, and let me know how it goes. I'm always interested in some solid compare and contrast information!
@BogdanCostin Жыл бұрын
@@AwesomeOpenSource Congrats for the nice work! You should try and compare with NethServer. Really interested in your comparison of the two.
@saichand1985 Жыл бұрын
Excellent Video! Can you pls also cover the process/steps for joining Ubuntu machine to zentyal DC through shell. Also see if you can demonstrate the Additional Domain Controller setup by spinning up second instance.
@AwesomeOpenSource Жыл бұрын
We'll see how far we get in the series, and maybe we can tackle all of those requests.
@zanewebb2316 Жыл бұрын
if not mentioned below, this domain join for windows PCs only works on pro versions of MS Windows, any windows home edition cannot join a domain. having said that, this is a good video, keen to try it in my Linux environment
@AwesomeOpenSource Жыл бұрын
Yes, sadly, Microsoft sees Domain joining as a cost addition. No idea why, but that's why it's so great to have open source options.
@RandyHanley Жыл бұрын
Really cool for me to see a Linux machine joining a Windows domain. Great video!
@drstefankrank Жыл бұрын
A windows domain that isn't even on windows.
@RandyHanley Жыл бұрын
@@drstefankrank very cool
@AwesomeOpenSource Жыл бұрын
Indeed it is Awesome!
@RandyHanley Жыл бұрын
@@AwesomeOpenSource thanks for always making amazing videos!
@AwesomeOpenSource Жыл бұрын
My pleasure! Thanks for watching!
@cm5569 Жыл бұрын
Awesome stuff, I do wonder if this can be done using a different dns server and not one running on Zentyal.
@AwesomeOpenSource Жыл бұрын
I think it can, but you need to make sure Zentyal is aware of the DNS server.
@knightwolf8877 8 ай бұрын
Question, in the bottom right corner of your taskbar you have a system monitor which is a little graph that's running across. I was wondering if you have the name of it because I can't seem to find one like that for KDE
@AwesomeOpenSource 7 ай бұрын
That's just a task panel widget that I found builtinto kde. I think you can set some settingson it to show the chart or the percentages, etc.
@yourpcmd Жыл бұрын
I'd be interested in a follow-up video going over the Mail, FTP, and Jabber. Edit: Will this work also for users offsite, like the same company but in different locations? Also, how about nginx to get to the dashboard instead of an IP so an admin can access it from anywhere?
@AwesomeOpenSource Жыл бұрын
I think we can eventually get there. But this was a big one for me to put together, and I just didn't want to lose people with too much at once.
@yourpcmd Жыл бұрын
@@AwesomeOpenSource I hear you. This series is very intriguing.
@PongoXBongo 3 ай бұрын
This was a great video. I'm Microsoft trained and certified in Active Directory but have been on the lookout for open-source alternatives for my small to midsize clients. Finally, there is a proper, polished solution that doesn't require a PhD in Linux-ology to implement. I only wish it had an equivalent to Domain Local groups. Being able to separate user groups (Payroll-Mgr) and resource-access groups (Payroll-Records-Modify) is a godsend when auditing time rolls around (nesting, FTW).
@AwesomeOpenSource 3 ай бұрын
There is also UCS Univention Corp Services. I'm working on a video on it as well, and it offers similar functionality. You may want to look into it as well.
@YourDogDoc 3 ай бұрын
@@AwesomeOpenSource will eagerly await this video AND an updated Zentyal 8.0 setup, too ;-)
@MindzGroupTech Жыл бұрын
Can we get a video on publically available domain controller and at the same time securing it from attacks
@datSpookyDude Жыл бұрын
I believe you can use Copilot to join a domain after setup
@AwesomeOpenSource Жыл бұрын
Nice tip, thanks.
@liveting4579 Жыл бұрын
Can you incorporate something like MDT for easier OS installs and autopilot for auto enrolment of devices with this? It would be interesting to see how to achieve something like this with open source.
@AwesomeOpenSource Жыл бұрын
I'll have to see what MDT and autopilot are. I'm not familiar with those systems. But I'll look into it and see what I can figure out.
@sethlerman5005 Жыл бұрын
MDT Shouldn't be a problem. You don't actually have to install MDT on a server. You can just install it (and the required ADK) on a Windows client PC to do all your work and configuration and still keep the DeploymentShare on the server for clients being built to access it.
@hotstovejer Жыл бұрын
So, freeipa is great for LDAP, RBAC, HBAC, and Linux controls. If you need to mix in users from freeipa into a Windows domain, you need to use AD trust. Don't know if this can be used for that, but it's an option. Also, there is Nethserver and UCS. UCS is HEAVY, but has neat things in it.
@AwesomeOpenSource Жыл бұрын
Yep, I want to expand on these capabilities in the future. I also want to cover nethserver. It's on my list.
@hotstovejer Жыл бұрын
@@AwesomeOpenSource I'm actually thinking about demoing Nethserver 8 since the older version is based off of CentOS 8, and it feels a bit long in the tooth.
@techiemike9483 Жыл бұрын
Great video, there is a bug in the webadmin. The only problem I have is trying to get the RSAT tool to work via windows 10, not sure if it because I am using a made up domain techie.local, I can join the domain but if I try to use RSAT it says the domain cannot be found, same setup using server 2022 no issues, not sure if you had similar issues?
@AwesomeOpenSource Жыл бұрын
I haven't tried it myself, as I don't use Windows generally, but was just passing along that the project says RSAT can be used, but if Server 2022 for Windows has the same issue, I'm guessing it's not a Zentyal issue alone.
@crashtfa Жыл бұрын
FreeIPA is the way to go, zentyal was good for it’s time, but now FreeIPA does so much more and is what redhat uses for RedHat IDM
@AwesomeOpenSource Жыл бұрын
I like Free IPA, but definitely not so friendly for Windows client setup.
@cdoublejj Жыл бұрын
anyone had any luck binding with sso like say jelly fin or nextcloud?? anyone able to bind vmware vsphere to this?
@barefooter2222 3 ай бұрын
I have been using Zentyal for a while now and with a new build, I wanted to get Zentyal 8 up and running with 2 domain controllers. Has anyone had any luck with getting 2 domain controllers joined on the same domain? I've fought it about half a dozen different times and it keeps getting messed up around the Samba config. Overall, Zentyal has been very great in v6 which I've used for a while, but v8 seems to be needing some love around additional DCs
@infotechsavvy4981 Жыл бұрын
The Platform is very great and cheap setup for Domain Controller & Active Directory. The only lacking with this one is the Group Policy Object. I think that's the beauty of Windows Server vs. Zentyal.
@AwesomeOpenSource Жыл бұрын
You can do group policy from any connected windows machine. You just need to install that function into windows, but you can manage it from there.
@dumitrugritcan3150 Жыл бұрын
Show us an guide how to do That , please )
@1diyproject Жыл бұрын
I just installed this in a VM last week to test it out. Was that windows home or pro in the setup? If it was home, were there additional installs required?
@AwesomeOpenSource Жыл бұрын
Just a win 10 VM. I don't really know what version it is actually. Home may not have the domain level login available.
@1diyproject Жыл бұрын
@@AwesomeOpenSource I agree, Windows Home does not have it. Great work on this product.
@mihaylovg.m. Жыл бұрын
It’s okay to feel that why. I felt like that sowh
@AwesomeOpenSource Жыл бұрын
Indeed.
@heaton922 Жыл бұрын
I just try with zentyal. I dunno why the username & pw is incorrect when joining the domain. I am pretty sure the pw is correct. And I go to github saw the same issue and still have some bugs with zentyal. hopefully, zentyal will fix that.
@AwesomeOpenSource Жыл бұрын
Sorry you are having trouble. I didn't run into that issue. I also hope they'll fix some of these little quirks.
@trksoft3320 Жыл бұрын
I installed zentyal on a proxmox container but I have an authentication problem ?!
@AwesomeOpenSource Жыл бұрын
If you'll jump over to discuss.opensourceisawesome.com and post about the issue, maybe I, or someone on the boards can help.
@TheGreatestMajesty Жыл бұрын
You may have answered this question, so sorry if I missed it. Is there a Docker Alternativeor containerized version?
@AwesomeOpenSource Жыл бұрын
Not that I know of, but I didn't really look. Since you can install it on top of ubuntu, I suppose it could be dockerized if it isn't already.
@TheGreatestMajesty Жыл бұрын
@@AwesomeOpenSource Thanks again my good sir. Salute!
@ccraw Жыл бұрын
What OS/desktop or thame are you running on your local desktop?
@AwesomeOpenSource Жыл бұрын
Kubuntu 22.04 with KDE.... just modified my taskbar a little.
@k36242 Жыл бұрын
Can you do a video about, Nethserver, ClearOS, Endian please. Thanks
@AwesomeOpenSource Жыл бұрын
NethServer is in my plan, so I'll lok at the others. Thanks for the suggestions.
@jasonji1152 Жыл бұрын
Univention UCS is my go-to domain controller choice
@AwesomeOpenSource Жыл бұрын
Is it open source? I'll look into it for sure.
@jasonji1152 Жыл бұрын
@@AwesomeOpenSource It's free to use, and pay for support if needed. Yes, it's open source. I used it for LDAP, AD, and Kopano Mail Server. it's very user friendly.
@AwesomeOpenSource Жыл бұрын
That's Awesome! Will definitely look into it! Thanks for the suggestion.
@amadoumane7600 Жыл бұрын
Can you provide us the open source of SIEM, IDS, IPS? I would like to train on these tools. Thank you
@AwesomeOpenSource Жыл бұрын
There are several tools for doing this. They are all available in OPNSense / pfSense firewalls, either built in, or as plug-in / add-ons. Suricata is one option for IPS/IDS. Takes time and tuning, but it's touted heavily by pros.
@amadoumane7600 Жыл бұрын
@@AwesomeOpenSource thank you so much
@jomijohn7068 Жыл бұрын
can you suggest a best opensource Documentation Software
@AwesomeOpenSource Жыл бұрын
That's a huge question. It really depend on your needs. I have really fallen in love with BookStack. It has some incredible features, and really makes keeping a documentation site up and running pretty easy. I have an older video on it, but need to do an update. There are, however, some other great videos that go through the "superuser" type features of it.
@rollyes_ 11 ай бұрын
Is it possible to log in with a smartcard?
@AwesomeOpenSource 11 ай бұрын
Mmmm, don't know. Didn't see anything for that when I was working on the video.
@LazySusanInventor Жыл бұрын
Can you add a nas to the domain ?
@AwesomeOpenSource Жыл бұрын
Yes. Should be able to addd anything you want.
@surisurendrababu Жыл бұрын
Hi can you demonstrate the same in cloud vm with publicip and domain ?
@AwesomeOpenSource Жыл бұрын
I'll see what I can do in the next video I make on the topic.
@surisurendrababu Жыл бұрын
@@AwesomeOpenSource thank you
@surisurendrababu Жыл бұрын
@@AwesomeOpenSource and please try to sync users from azure ad to zentyal
@navedwaris2363 Жыл бұрын
Can we apply group policy through this server???
@AwesomeOpenSource Жыл бұрын
You can using some tools that you would install into one of your windows clients. You'd login to it using the Domain Admin account, then install the Remote Server Admin Tools for Windows. From there, if your domain, and dc are setup properly, the tools will identify your server and any group policies you create will be applied on the server and to your other machines / users.
@LehmannMr Жыл бұрын
I used the iso to create Vmware Workstation Machine -- but everything gets installed automatically and after it finishes I only get a shell window --- what am I missing here ?
@AwesomeOpenSource Жыл бұрын
I'm not sure. Shouldn't install everything by default. Did you miss a screen somehow? Maybe the wizard didn't run, so the services are all there technically, just not started?
@LehmannMr Жыл бұрын
@@AwesomeOpenSource I tried it twice. There are some installation screens shown but everything is installed automatically. At the end there is only a prompt.
@AwesomeOpenSource Жыл бұрын
I'm sorry you're running into that. I never experienced that issue. Not sure why it would be happening.
@LehmannMr Жыл бұрын
@@AwesomeOpenSource Maybe someone else here will check it. Apart from that my conclusion from all the comments over here that this project is no longer very well maintained and the only reasonable option is to buy a windows server licence.
@benjaminberisha1 Жыл бұрын
Very Nice Software! Is it necessary to use .loc in the Domain Name?
@AwesomeOpenSource Жыл бұрын
no, I just had my domain set to that in my network already. You can use either a public or private domain, so make it what you want.
@christopherklein3829 Жыл бұрын
Pls have a look to nethserver 8, too
@AwesomeOpenSource Жыл бұрын
This is also on my list. I'm excited to see what they can do with Docker as a base.
@krdesigns Жыл бұрын
so far no luck installing the software properly. Upon install should I restart the server its either zentyal lost IP or lost internet connection. Unsure on what happen.
@krdesigns Жыл бұрын
yes, did more testing and zentyal have problem. Upon setup and input the IP etc, it stuck just like in your youtube on webadmin. I can refresh as follow. Then basically now the proxmox VM have no access to internet. Updating is basically impossible. Unsure what is being changes, that disable the connection to outside world
@AwesomeOpenSource Жыл бұрын
Yes, I did have to kind of work through a couple of times, but did get it to work. Never lost connection completely though.
@krdesigns Жыл бұрын
@@AwesomeOpenSource could you tell us how you solve the problem.. Because it giving me a headache. Been trying to fixed without any right solutions. Furthermore it wont allow the domain admin to login from Windows 11 Pro. Keep saying wrong password
@theterriblegamer1228 Жыл бұрын
Is this Windows 11 Compatible? Having issues with Synology Directory Services accepting Windows 11 clients
@AwesomeOpenSource Жыл бұрын
I don't have a Windows 11 machine to test, but someone else mentioned they didn't think it would be an issue...I don't think they tested it though...so just don't know.
@theterriblegamer1228 Жыл бұрын
@@AwesomeOpenSource I was able to connect a windows 11 VM last night, however it's one that I had previously made some settings changes to in order to try and connect it to a different AD. Will need to clean install the VM and try again to be sure. Microsoft offers a win11 ISO on their website as a free download. Win11 has made some significant changes to how it authenticates with ADCs.
@AwesomeOpenSource Жыл бұрын
Thanks for the info and update. Let me know how the clean install goes.
@lewiskelly14 Жыл бұрын
So are there any group policies???
@AwesomeOpenSource Жыл бұрын
You can add a package to one of the Windows machines to use as a master machine, and push out group policies with it.
@mjackstewart Жыл бұрын
Can you move the FSMO roles?
@jarosawm.55 Жыл бұрын
Można przenosić role FSMO, wszystko opisane jest w dokumentacji zentyal dodatkowo polecam wspomagać się dokumentacją od samba
@cluberic 5 ай бұрын
what about group policy?
@AwesomeOpenSource 5 ай бұрын
You can add the functions to any Windows 10 PC and then manage group policy from there. I believe they have instructions on how to do it on their site as well.
@uae7001 Жыл бұрын
i wish if you show us how to install Zentyal on a LXC Container
@AwesomeOpenSource Жыл бұрын
Maybe in a future video.
@mdd1963 10 ай бұрын
There are turnkey AD solutions..
@akurenda1985 Жыл бұрын
Zentyal is still on the domain and forest level of 2008 R2(Equivalent of Windows 2012 R2, since 2016 to 2022 are all on 2016 domain and forest levels). I love the idea of the software, but you are very limited on what you can do with it. Also, I would never put this in a client's infrastructure. If they can't afford actual Windows Licensing, I'm not going to piece meal them. AAD Connect does not work with Zentyal, and it's literally a must if you are a 365 shop. l love the concept of "I want to use all open source software", but everything is literally revolving around cyber insurance requirements and security frameworks, so it's literally a pipe dream for most people in IT.
@AwesomeOpenSource Жыл бұрын
I completely understand where you are coming from, and there may not be as many open source projects as we need. But, as I've always said, just because it's closed source doesn't make it better. A lot of compliance and standards are set by arbitrary boards that then charge incredible amounts fo money to get through the compliance or certification process. It's generally an issue of not being able to afford to go through the process for most projects more than it being the project wouldn't be able to pass, or at the very least fix any issue identified. Theere's this line in the movie "Willy Wonka and the Chocolate Factory" that has stuck with me since I was a kid... "We are teh music-makers, and we are the dreamers of the dreams." Unless we start dreaming the dream, we cannot build up what we dream of. I'm just trying to help people realize the dream, and we will build it as we can.
@akurenda1985 Жыл бұрын
Please don't misunderstand. I love open source. I have a VCP-DCV and I'd rather run Proxmox or XCP-NG for my personal use any day of the week. But when you're dealing with insurance companies, HIPAA audits, FDIC audits, pretty much ANY audit, this will be flagged for a ton of issues. Not only that, but if you have a BAA with your clients, you're going to have a hard time even running this yourself for your own infra, because YOU have to also pass the audits. Having been through SOC2 compliance, FDIC audits for credit unions and banks, and dealing with many large healthcare orgs, I have a much more cynical view of open source in a real enterprise setting. Speaking of quotes, my step dad used to tell me the same thing every time I really "wanted" something and I couldn't get it "Son, wish in one hand and shit in the other. See which one gets filled the quickest".
Жыл бұрын
You're talking about the biggest companies as a client of yours, when this (Zentyal) and similar projects made for the smallest companies to spare the money they must spend on a single Windows Server licence they ever may need. Of course, anyone who would like to integrate thing with MS's own cloud or other systems, must purchase and run original MS software. And of course, who must certify on specific topics (which usually have a list of accepted solutions) also buy from the accepted solutions list to pass that certification. But everyone else can use open source software, and this "everyone else" is a very big set not a marginal one...
@AwesomeOpenSource Жыл бұрын
I 100% understand. Seriously. I work (in my day job) in software for public safety, which has all kinds of audits, and compliance requirements. I'm always looking for the Open Source that will make the grade, but in so many cases, you're right, the audits just don't allow for it. I appreciate you sharing what you know about the subject. I'm always the first to say that I in no way, shape, or form, know everything. I try to learn something new everyday, so seriously, thank you for sharing.
@jgould30 Жыл бұрын
@ No that's the thing. I work with a very small (25 employees) clinical laboratory that must meet regulatory requirements (HIPAA) and another (
@n0madtv Жыл бұрын
Unfortunately you can't add existing windows pc's to the domain without giving them a whole new user/profile. I tried zentyal but it was pointless since I wasn't willing to re-do every pc on my network with a fresh install. Note; this is a windows domain problem, not a zentyal problem.
@AwesomeOpenSource Жыл бұрын
Interesting to know. When you say whole new user / profile, do you want to login to the domain using your current local user?
@n0madtv Жыл бұрын
@@AwesomeOpenSource Yeah, active directory doesn't allow adding an existing local user. All new users have to be created in the domain. The only workaround, aside from reinstalling the windows client and starting from scratch, is to create a new user/profile in windows. Some people do this for work purposes (ie: second profile for logging into domain, first profile for home use), but otherwise the windows domain has to be built from day 1 from the controller outward. If that makes sense....
@ThierryC2373 Жыл бұрын
How about AD policies?
@AwesomeOpenSource Жыл бұрын
This can be done by installing the RAST (Remote Tools) on one of your Windowss machines, and logging into it as a Domain Admin.
@ThierryC2373 Жыл бұрын
@@AwesomeOpenSource no, I meant if you use this as a domain controller, how do you manage the AD policies which must reside on a domain controller? This looks more like LDAP than Active Directory to me.
@MrHoshani Жыл бұрын
soft source?
@AwesomeOpenSource Жыл бұрын
In what context?
@zohrabmi5767 Жыл бұрын
Unfortunately Linux is not world-wide desktop OS alike Windows
@AwesomeOpenSource Жыл бұрын
True, but the more we use it, the more it can become a bigger part of the world computing landscape.
@kristopherleslie8343 Жыл бұрын
Zohrab, i have to disagree. 80% roughly of the entire world is on Linux, saying Linux isn't on a desktop, is like a meme. Almost anything you can imagine or use is running on Linux at some level. Microsoft runs on Linux.
@AwesomeOpenSource Жыл бұрын
Agree, when you consider servers, Linux runs the world and the interneet. But if you only look at desktop usage, people don't use Linux but about 2.2% overall. So I see the OP's point.
@Ne0_Vect0r Жыл бұрын
Better use Univention Corporate Server
@AwesomeOpenSource Жыл бұрын
Indeed, I will do a video on it in the future. Thanks for the suggestion, and for watching.
@kristopherleslie8343 Жыл бұрын
Definitely wouldn't be using this anymore. Better alternatives but would probably suggest a cloud based solution
@AwesomeOpenSource Жыл бұрын
If you know of any open source cloud based solutions, please point them out. I'm always happy to look into more options.
@kristopherleslie8343 Жыл бұрын
@@AwesomeOpenSource will do gotta dust some links off
@kristopherleslie8343 Жыл бұрын
Could have sworn i posted links but I ill try to get them again.
@AwesomeOpenSource Жыл бұрын
KZfaq deletes comments with links from anyone who isn't the video owner. Sorry, forgot about that. If you'll just give me the names of the software, I"m happy to do some digging.
@kristopherleslie8343 Жыл бұрын
@@AwesomeOpenSource Jumpcloud can get you started
@RockFordCademce Жыл бұрын
is it free?
@AwesomeOpenSource Жыл бұрын
It's open source software. You can use a good portion of it at no cost, but keeping the software going depends on financial backing just like any project.
@bartv6387 13 күн бұрын
3 grant a year? FO
@AwesomeOpenSource 9 күн бұрын
It is a bit of money, but potentially still less expensive than MS offerings.
@bartv6387 8 күн бұрын
@@AwesomeOpenSource Why compared to MS offerings? First full AD is invented by Novel, MS just stole it. And there are RFC' s alreayd in 1971 about AD And BTW why are there still so many bug's and erro's in a 40 year old operating system? Windows startend in 20-11-1985 so Ad was already invented by then. Should be free for everyone
@cdoublejj Жыл бұрын
...An Open Source Domain Controller and Active Directory........BULLSHIT!!!! ...35 minutes... what the!???? Gotta check this out!!!!!!
@AwesomeOpenSource Жыл бұрын
Let me know what you think...it's really great stuff!
@supremeshadow Жыл бұрын
after zentyal 4.0 devs become very greed, most of usefull options not free.
@AwesomeOpenSource Жыл бұрын
Sorry to hear that... but I don't know if it's greed. Open Source projects are very hard to maintain. Most people work on a project as their side hobby...and if we want them to continue the project, build it up, make it better, then we want them to make it their full time job, and that costs money. I can see why it becomes a value add type system after a while, and that's why it's importatn for us to be advocates of open source, and pay for the software we love to use, adn donate where we can.
@MrBross-ey8yp Жыл бұрын
dont be the type of person to use roaming profiles
@AwesomeOpenSource Жыл бұрын
I'll do my best.
@ubaidrahman4198 Жыл бұрын
Mlk, se pá que o canal foi hackeado
@j_r_- Жыл бұрын
Mailcow
@AwesomeOpenSource Жыл бұрын
I'll cover it in the future. Thanks for the suggestion.
@j_r_- Жыл бұрын
@@AwesomeOpenSource Thanks I use it for my mail server its perfect. Way better than iredmail and mail in a box
@Foiliagegaming Жыл бұрын
This is a cool set up. But you are able to get cheap keys
@AwesomeOpenSource Жыл бұрын
I'm not sure what you mean by cheap keys.
@bryanb3352 Жыл бұрын
Just stand up a Windows domain controller. This thing is nothing but a pain in the butt. If you just want to play around, fine, but don't use it for anything that you need to work consistently.
@AwesomeOpenSource Жыл бұрын
Sorry you had a bad experience with Zentyal. I, thus far, have had no issues other than the odd install wizard quirk I mentioned in the video.
@udirt Жыл бұрын
This looks like a child toy. Would recommend people to squint for a moment and use a reasonably good NAS to provide AD services instead.
@AwesomeOpenSource Жыл бұрын
If you know of an Open Source NAS that has the ability, please let me know. Would love to cover that.
@oneito947 Жыл бұрын
you should have gone with Nethserver, has awesome community as well as very active development and amazing people
@AwesomeOpenSource Жыл бұрын
I'll definitely cover Nethserver in a future video! Thanks for watching.
@RealLexable 16 күн бұрын
Can you recommend a good hosting provider in this matter with proxmox?
@AwesomeOpenSource 15 күн бұрын
I don't know any that have Proxmox setup already if that's what you mean, but you should be able to install proxmox on a hosting provider's server....that said, might be overkill.
@RealLexable 14 күн бұрын
@@AwesomeOpenSource i have already proxmox installed on a server provider here in germany but am searching for a good one in London as well ???
@ewenchan1239 8 ай бұрын
Did you ever get around to making the video of how to modify an existing Ubuntu user account so that it will use the Active Directory Domain Controller rather than the local Linux PAM authentication?
@AwesomeOpenSource 8 ай бұрын
I thought I added it to the end of this one. I know I did record it. Been so long, don't really recall. But, you need to set it up on install of Ubuntu if you want to use the GUI tools, otherwise there's a whole set of commands to get it setup. Not sure why it matters when you setup the account, but that's how it was when I originally did this video.
@ewenchan1239 8 ай бұрын
@@AwesomeOpenSource I think that towards the end of this video, you mentioned that you might make a separate video of how to modify an existing Ubuntu user account, so I am just following up on that remark.
@AwesomeOpenSource 8 ай бұрын
Ok, I re-watched, and refreshed myself, and I did say that, but I did not ever follow up. I still notice that it's from the initial setup / install that it's right in the GUI. If you're adding a new user to the machine (in 23.10 at least), you can also choose Enterprise Login and add them to a domain that way. Here's a link on how to do it help.ubuntu.com/stable/ubuntu-help/user-add.html.en, but if it's an existing user, there are a lot of steps to follow to change how they login as far as I can tell.
@ewenchan1239 8 ай бұрын
@@AwesomeOpenSource "but if it's an existing user, there are a lot of steps to follow to change how they login as far as I can tell." Thank you. I was under the impression that you might have conducted the research already in regards to how to modify an existing user account to have it join an Active Directory domain. But based on your reply, it sounds like that my assumption may be incorrect. Thank you, for your help.
Awesome Open Source
Рет қаралды 69 М.
Awesome Open Source
Рет қаралды 56 М.
East Charmer
Рет қаралды 20 М.
Awesome Open Source
Рет қаралды 15 М.
Awesome Open Source
Рет қаралды 51 М.
Awesome Open Source
Рет қаралды 27 М.
notebook-31
Рет қаралды 115 М.
Pochinka_blog
Рет қаралды 4,7 МЛН
Typecase
Рет қаралды 11 МЛН