User Tools

Site Tools

Trace:
ubuntu_14.04_ldap_client

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
ubuntu_14.04_ldap_client [2015/03/03 15:01] – external edit 127.0.0.1ubuntu_14.04_ldap_client [2015/03/05 08:48] (current) herwarth
Line 1: Line 1:
-====Install and configure packages==== +======LDAP client on Ubuntu 14.04====== 
 +=====Installation=====
   apt-get install sssd libnss-sss libpam-sss auth-client-config   apt-get install sssd libnss-sss libpam-sss auth-client-config
  
-  vi /etc/sssd/sssd.conf +=====Configuration===== 
- +====sssd==== 
-<code>+<code - /etc/sssd/sssd.conf>
 [sssd] [sssd]
 config_file_version = 2 config_file_version = 2
Line 33: Line 33:
   wget http://ldap.mngt.rtd.helux.nl/cacert.pem   wget http://ldap.mngt.rtd.helux.nl/cacert.pem
  
-  vi /etc/auth-client-config/profile.d/acc-sssd +<code - /etc/auth-client-config/profile.d/acc-sssd>
- +
-<code>+
 [sssd] [sssd]
 nss_passwd=     passwd:         compat sss nss_passwd=     passwd:         compat sss
Line 68: Line 66:
      
 ====Enable homedir creation==== ====Enable homedir creation====
-  vi /usr/share/pam-configs/mkhomedir +<code - /usr/share/pam-configs/mkhomedir>
- +
-<code>+
 Name: activate mkhomedir Name: activate mkhomedir
 Default: yes Default: yes
Line 82: Line 78:
 remove use_authok remove use_authok
      
-  vi /etc/pam.d/common-password +<code - /etc/pam.d/common-password> 
- +
-  +# /etc/pam.d/common-password - password-related modules common to all services 
-  # /etc/pam.d/common-password - password-related modules common to all services +# -- removed comment header talking about various options --
-  # -- removed comment header talking about various options -- +
-   +
-  # here are the per-package modules (the "Primary" block) +
-  password [success=2 default=ignore] pam_unix.so obscure sha512 +
-  password [success=1 user_unknown=ignore default=die] pam_ldap.so use_authtok try_first_pass +
-  # here's the fallback if no module succeeds+
  
 +# here are the per-package modules (the "Primary" block)
 +password [success=2 default=ignore] pam_unix.so obscure sha512
 +password [success=1 user_unknown=ignore default=die] pam_ldap.so use_authtok try_first_pass
 +# here's the fallback if no module succeeds
 +</code>
   pam-auth-update   pam-auth-update
  
Line 101: Line 96:
  
   service sssd restart   service sssd restart
 +
 +
 +{{tag>linux}}
  
ubuntu_14.04_ldap_client.1425394911.txt.gz · Last modified: (external edit)

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki