Instructions detailing how to enable using Active Directory logins to authenticate into Red Hat Satellite using Directcontrol.
Applies to: All versions of DirectControl on RHN Satellite 5.8 or higher.
Question: What are the steps to enable the use of Active Directory login IDs via Centrify DirectControl for authenticating to the RHN Satellite application?
Answer: RHN Satellite supports LDAP, Kerberos and other network-based authentication options via PAM. The following configuration will help enable PAM authentication via Centrify DirectControl on RHN Satellite servers:
1) Set up a PAM service file (usually /etc/pam.d/rhn-satellite) and have Satellite use it by adding the following line to /etc/rhn/rhn.conf:
pam_auth_service = rhn-satellite (This assumes the PAM service file is named rhn-satellite.)
2) As an example for a Red Hat Enterprise Linux 7 system to authenticate against Active Directory, one could put the following in /etc/pam.d/rhn-satellite: