Anyone figured out how to ZeroTier with AD?
-
@krisleslie said in Anyone figured out how to ZeroTier with AD?:
I have two remote sites - no servers at them. All authentication is over the site to site VPN between my firewalls.
So what are you using for authentication? So each site just "talks" to each other over vpn, I gotcha there, but authentication is handled by what?AD
-
@krisleslie said in Anyone figured out how to ZeroTier with AD?:
Nothing spectacular just UBNT Firewalls.
Pretty spectacular.
-
Where is Zoho the company located?
-
@jmoore said in Anyone figured out how to ZeroTier with AD?:
Where is Zoho the company located?
Southern India
-
@jmoore said in Anyone figured out how to ZeroTier with AD?:
Where is Zoho the company located?
You might know them as their subsidiary ManageEngine
-
-
Ok cool thanks. Did not realize they were related to ManageEngine.
-
@jmoore said in Anyone figured out how to ZeroTier with AD?:
Ok cool thanks. Did not realize they were related to ManageEngine.
They are the parent.
-
@scottalanmiller Ok I see. Love their stuff though.
-
@jmoore said in Anyone figured out how to ZeroTier with AD?:
@scottalanmiller Ok I see. Love their stuff though.
oh yeah, Zoho has been amazing. We are so happy with the product and just getting into using more and more features of it.
-
@scottalanmiller said in Anyone figured out how to ZeroTier with AD?:
@jmoore said in Anyone figured out how to ZeroTier with AD?:
@scottalanmiller Ok I see. Love their stuff though.
oh yeah, Zoho has been amazing. We are so happy with the product and just getting into using more and more features of it.
Yes I use their stuff at home, make my family use it so I can see how easy/hard it really is to use.
-
@krisleslie I'm logging into my windows machines with Google credentials and pushing out OMA-URI policies via G Suite. Ideal scenario for us.
-
@larsen161 can you point me to a link?
-
@JaredBusch how did you setup your NIC for the workstation that had to remote into the AD via ZeroTier? I'm still trying to figure out exactly what was statically assigned as your post wasn't too clear for me (this is new to me).
-
@krisleslie said in Anyone figured out how to ZeroTier with AD?:
@JaredBusch how did you setup your NIC for the workstation that had to remote into the AD via ZeroTier? I'm still trying to figure out exactly what was statically assigned as your post wasn't too clear for me (this is new to me).
Host file on the remote machine
10.230.2.123 domain.local domain server.domain.local serverbut exclude the ZeroTier IP from the DNS Server listen on settings on the server.
also remove the ZeotTier IP from the DNS entries on the server. -
Ok lets walk through this so I can make sure I'm duplicating what you did. You stated you took the IPv6 of the DC and put it into the IPv6 of the laptop. You put the IPv6 in the AD/DNS server into the DNS settings I'm assuming on the NIC? Did you statically assign your IP of the laptop?
-
@krisleslie said in Anyone figured out how to ZeroTier with AD?:
Ok lets walk through this so I can make sure I'm duplicating what you did. You stated you took the IPv6 of the DC and put it into the IPv6 of the laptop. You put the IPv6 in the AD/DNS server into the DNS settings I'm assuming on the NIC? Did you statically assign your IP of the laptop?
I used IPv4 everywhere in ZT.
delete this from the DNS entries.
manually put the the server and domain info in the hosts file of the remote system
10.202.3.21 fsldc02.domain.local domain.local domain fsldc02 -
It fooled me for a moment but didn't work either. Either this isn't all the steps you used or there is something else in play that I'm not aware of.
-
@krisleslie said in Anyone figured out how to ZeroTier with AD?:
It fooled me for a moment but didn't work either. Either this isn't all the steps you used or there is something else in play that I'm not aware of.
Where are things failing for you at this time?
-
It "kinda" started creating the profile and ended up giving me a "black hole" where it will never login completely and keep spinning. So I've tried now flushing the dns on the laptop making sure I adjust the host file right cause I didn't do it right the first go round.
