User Tools

Site Tools

Trace:
ubuntu_14.04_ldap_client

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
ubuntu_14.04_ldap_client [2015/03/04 08:36] herwarthubuntu_14.04_ldap_client [2015/03/05 08:48] (current) herwarth
Line 1: Line 1:
-====LDAP client on Ubuntu 14.04==== +======LDAP client on Ubuntu 14.04====== 
-===Install and configure packages=== +=====Installation=====
   apt-get install sssd libnss-sss libpam-sss auth-client-config   apt-get install sssd libnss-sss libpam-sss auth-client-config
  
-  vi /etc/sssd/sssd.conf +=====Configuration===== 
- +====sssd==== 
-<code>+<code - /etc/sssd/sssd.conf>
 [sssd] [sssd]
 config_file_version = 2 config_file_version = 2
Line 34: Line 33:
   wget http://ldap.mngt.rtd.helux.nl/cacert.pem   wget http://ldap.mngt.rtd.helux.nl/cacert.pem
  
-  vi /etc/auth-client-config/profile.d/acc-sssd +<code - /etc/auth-client-config/profile.d/acc-sssd>
- +
-<code>+
 [sssd] [sssd]
 nss_passwd=     passwd:         compat sss nss_passwd=     passwd:         compat sss
Line 68: Line 65:
   auth-client-config -a -p sssd   auth-client-config -a -p sssd
      
-===Enable homedir creation=== +====Enable homedir creation==== 
-  vi /usr/share/pam-configs/mkhomedir +<code - /usr/share/pam-configs/mkhomedir>
- +
-<code>+
 Name: activate mkhomedir Name: activate mkhomedir
 Default: yes Default: yes
Line 80: Line 75:
 </code> </code>
  
-===Enable allow change of password using passwd tool===+====Enable allow change of password using passwd tool====
 remove use_authok remove use_authok
      
-  vi /etc/pam.d/common-password +<code - /etc/pam.d/common-password> 
- +
-  +# /etc/pam.d/common-password - password-related modules common to all services 
-  # /etc/pam.d/common-password - password-related modules common to all services +# -- removed comment header talking about various options --
-  # -- removed comment header talking about various options -- +
-   +
-  # here are the per-package modules (the "Primary" block) +
-  password [success=2 default=ignore] pam_unix.so obscure sha512 +
-  password [success=1 user_unknown=ignore default=die] pam_ldap.so use_authtok try_first_pass +
-  # here's the fallback if no module succeeds+
  
 +# here are the per-package modules (the "Primary" block)
 +password [success=2 default=ignore] pam_unix.so obscure sha512
 +password [success=1 user_unknown=ignore default=die] pam_ldap.so use_authtok try_first_pass
 +# here's the fallback if no module succeeds
 +</code>
   pam-auth-update   pam-auth-update
  
Line 102: Line 96:
  
   service sssd restart   service sssd restart
 +
 +
 +{{tag>linux}}
  
ubuntu_14.04_ldap_client.1425458171.txt.gz · Last modified: by herwarth

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki