Extend Active Directory Schema on Windows Server 2012 R2 by adding UNIX attributes

In order to extend Active Directory schema in Windows Server 2012 R2 with Unix attributes, you will need to install the Identity Management for Unix using DISM.exe utility.

  1. Click on Windows PowerShell on the taskbar, run as Administrator to open PowerShell window
  2. To install the administrative tools for Identity Management for Unix execute these  3 commands in the PowerShell
-- once you run each command you are asked to restart the computer, select N 
Dism.exe /online /enable-feature /featurename:adminui /all
Dism.exe /online /enable-feature /featurename:nis /all
Dism.exe /online /enable-feature /featurename:psync /all

Once you have done all , reboot the Windows Server 2012 R2 so the changes can be applied. Identity Management for Unix enables you to integrate Windows users into existing Unix or Linux  environment. As well these features allow you to sync accounts and passwords between Windows and Linux.

You can check now the new attribute tab in Active Directory, click on any user and you will notice new tab – Unix Attributes where you can setup:

  • NIS domain
  • UID
  • Login shell
  • Home directory
  • Primary group/GID

Now you can easily integrate your Linux box with Active Directory and have same account/password distributed across systems. Check out his book: