Linux Identity Lab Setup

Status: Scaffold — content in progress

Components

lnx01: Ubuntu 22.04 LTS, joined to itdr.lab AD domain via SSSD
Attacker: Kali (same network)

Join Linux to AD

# Install SSSD and realm tools
apt install sssd-ad sssd-tools realmd adcli krb5-user

# Join domain
realm join itdr.lab -U Administrator

# Verify
id Administrator@itdr.lab

Configure Sudo for AD Users

# /etc/sudoers.d/domain-admins
%Domain\ Admins@itdr.lab ALL=(ALL) ALL

Credential Cache Locations

# View current Kerberos credentials
klist

# Cache file location
ls -la /tmp/krb5cc_*

# SSSD cache
ls /var/lib/sss/db/

Cross-Links

Topic	Link
Linux Kerberos	linux-kerberos
Pass-the-Ticket	pass-the-ticket

Components​

Join Linux to AD​

Configure Sudo for AD Users​

Credential Cache Locations​

Cross-Links​

Components

Join Linux to AD

Configure Sudo for AD Users

Credential Cache Locations

Cross-Links