1. Install OpenLDAP Packages. yum install openldap openldap-clients 2. Install the sssd and sssd-client packages. yum install sssd sssd-client 3. Modify /etc/openldap/ldap.conf to contain the proper server and search base information for the organization. TLS_CACERTDIR /etc/openldap/cacerts URI ldap://ldap.sabagus.com:389 BASE dc=sabagus,dc=com 4. Modify /etc/nsswitch.conf to use sss. passwd: files sss shadow: files sss group: files sss 5. Configure the LDAP client by using sssd. The sssd configuration is located at /etc/sssd/sssd.conf. Example: (Here domain is set to sabagus.com) [domain/sabagus.com] autofs_provider = ldap cache_credentials = False ldap_search_base = dc=sabagus,dc=com id_provider = ldap auth_provider = ldap chpass_provider = ldap ldap_uri = ldap://ldap.sabagus.com:389 ldap_id_use_start_tls = False ldap_tls_cacertdir = /etc/openldap/cacerts ldap_schema = rfc2307bis ldap_auth_disabl
SA Bagus is a blog about computer technology, networking, cloud, crypto, and cyber security.