/etc/nsswitch.conf has:
passwd: files sss shadow: files sss group: files sss hosts: files dns bootparams: nisplus [NOTFOUND=return] files ethers: files netmasks: files networks: files protocols: files rpc: files services: files sss netgroup: files sss publickey: nisplus automount: files aliases: files nisplus
/etc/sssd/sssd.conf has:
[sssd] config_file_version = 2 services = nss, pam domains = AD
[nss] filter_users = root override_shell = /bin/bash override_homedir = /home/%u
[pam]
[domain/AD]
id_provider = ldap auth_provider = ldap chpass_provider = ldap
access_provider = ldap ldap_uri = ldaps://my-ldap-server/ ldap_schema = rfc2307bis (other ldap settings)
cache_credentials = true enumerate = false
On Mon, Sep 08, 2014 at 01:51:49PM -0700, Jacob Weber wrote:
/etc/nsswitch.conf has:
passwd: files sss shadow: files sss group: files sss hosts: files dns bootparams: nisplus [NOTFOUND=return] files ethers: files netmasks: files networks: files protocols: files rpc: files services: files sss netgroup: files sss publickey: nisplus automount: files aliases: files nisplus
/etc/sssd/sssd.conf has:
[sssd] config_file_version = 2 services = nss, pam domains = AD
[nss] filter_users = root override_shell = /bin/bash override_homedir = /home/%u
[pam]
[domain/AD]
id_provider = ldap auth_provider = ldap chpass_provider = ldap
access_provider = ldap ldap_uri = ldaps://my-ldap-server/ ldap_schema = rfc2307bis (other ldap settings)
cache_credentials = true enumerate = false
Well, sudo is not configured :-)
Can you check out man sssd-ldap, there are some examples, hopefully that would be helpful..
On (08/09/14 22:55), Jakub Hrozek wrote:
On Mon, Sep 08, 2014 at 01:51:49PM -0700, Jacob Weber wrote:
/etc/nsswitch.conf has:
passwd: files sss shadow: files sss group: files sss hosts: files dns bootparams: nisplus [NOTFOUND=return] files ethers: files netmasks: files networks: files protocols: files rpc: files services: files sss netgroup: files sss publickey: nisplus automount: files aliases: files nisplus
/etc/sssd/sssd.conf has:
[sssd] config_file_version = 2 services = nss, pam domains = AD
[nss] filter_users = root override_shell = /bin/bash override_homedir = /home/%u
[pam]
[domain/AD]
id_provider = ldap auth_provider = ldap chpass_provider = ldap
access_provider = ldap ldap_uri = ldaps://my-ldap-server/ ldap_schema = rfc2307bis (other ldap settings)
cache_credentials = true enumerate = false
Well, sudo is not configured :-)
Can you check out man sssd-ldap, there are some examples, hopefully that would be helpful..
Probably you meant manual page sssd-sudo.
LS
sssd-users@lists.fedorahosted.org
-
Jacob Weber -
Jakub Hrozek -
Lukas Slebodnik