LDAP Authentication

Support for security such as Firewalls and securing linux
Post Reply
alexm
Posts: 34
Joined: 2012/06/04 21:04:55

LDAP Authentication

Post by alexm » 2014/07/14 14:42:42

Is there a HOWTO or WIKI about setting up LDAP on Centos7? I have tried to do what I did on 6, but I am missing something... And documentation on this seems to be difficult to find.

I've found a few things grepping the net and have tried those (authconfig-tui, etc), SSSD is running and *seems* to be configured properly, though I can't for the life of me find the equivalent of nslcd's "bindpw", which it seems I should need. NSLCD is running and configured like my other Centos6 servers. getent passwd still only shows the contents of /etc/passwd.

Any ideas?

gerald_clark
Posts: 10642
Joined: 2005/08/05 15:19:54
Location: Northern Illinois, USA

Re: LDAP Authentication

Post by gerald_clark » 2014/07/14 14:46:35


alexm
Posts: 34
Joined: 2012/06/04 21:04:55

Re: LDAP Authentication

Post by alexm » 2014/07/14 14:52:34

Ah! Great!

Thanks Gerald, as many years as I have used Centos I didn't realize that the "official" docs were the RHE docs, but it does make sense.

Thanks for the help!

alexm
Posts: 34
Joined: 2012/06/04 21:04:55

Re: LDAP Authentication

Post by alexm » 2014/07/14 16:51:39

Just FFR: everything in Centos7 seems to be tied into the ldM, and there seems to be no real documentation explaining how to properly and easily integrate ldM into an existing LDAP infrastructure. However, I did solve my problem, by doing the following (as seen in viewtopic.php?t=7679, for 6.5):

yum uninstall sssd
yum uninstall sssd-client
yum uninstall oddjob

and changing all references in /etc/pam.d/* from sss to ldap. I also installed nslcd and configuring nslcd.conf like I always have, then making sure nslcd is running and set to be enabled using systemcfg.

After a reboot everything works as it used to.

This may break all the rules and may anger some purists, but this works in our production environment.

LinuxArchitect
Posts: 1
Joined: 2014/11/02 12:02:17

Re: LDAP Authentication

Post by LinuxArchitect » 2014/11/02 13:47:22

A question about the official RHEL docs...

The sys admin guide has chapter 11 on openldap and a reference "For detailed instructions on how to configure applications to use LDAP for authentication, see the Red Hat Enterprise Linux 7 Authentication Guide." The only authentication guide I see is the Linux Domain Identity, Authentication, and Policy Guide, which talks about iDM and migrating from openldap to idM.

Am I missing something?

George

Post Reply

Return to “CentOS 7 - Security Support”