Modifying ProxyAddresses attribute for a user in Powershell

Getting the current ProxyAddresses attribute value for a user in Powershell :

Get-ADUser -Filter 'Name -like "*username*"' -Properties ProxyAddresses

 

Setting several values for ProxyAddresses attribute :

Set-ADUser -Identity username -add @{Proxyaddresses="SMTP:username@domain",

"smtp:alias1@domain","smtp:alias2@domain"}

 

 

Could not fetch our SID – did we join ?

If you get this message, your linux server is not member of an Active Directory realm.
To join properly the realm :

[root@localhost:~]# net ads leave -U

Join your server using an Administrator account in the right OU using the createcomputer option

[root@localhost:~]# net ads join -U createcomputer=DOMAIN/Servers/Non-Windows

Once joined, check the trust secret for your DOMAIN :

[root@localhost:~]# wbinfo -t
checking the trust secret for domain DOMAIN via RPC calls succeeded

In Microsoft Active Directory, what is the difference between security and distribution groups ?

To quote the documentation below regarding Active Directory groups,

Groups are used to collect user accounts, computer accounts, and other groups into manageable units. Working with groups instead of with individual users helps simplify network maintenance and administration.

There are two types of groups in Active Directory:

Distribution groups Used to create email distribution lists.

Security groups Used to assign permissions to shared resources.

Full details here : Active Directory Security Groups

New DNS entries added while joining a Windows domain

Beware of rejoining a Linux server to a Windows domain.
After restarting winbind service and rejoining a server running RHEL 6.6 within a Windows domain, the monitoring of this server and its services started to be a real mess, sending false alerts.
After investigation, new DNS entries were added. The DNS name was the same pointing to different IP addresses, the ones set up on the server.
By default, Samba enables all active interfaces except the loopback interface (whose IP address 127.0.0.1)
One solution is to specify the name of only one active interface.
This can be set up as follows :

/etc/samba/smb.conf

interfaces = eth0