http://wiki.jamesdooley.us/index.php?action=history&feed=atom&title=Server_LDAP_Setup 2026-04-10T22:00:04Z Revision history for this page on the wiki MediaWiki 1.28.0 http://wiki.jamesdooley.us/index.php?title=Server_LDAP_Setup&diff=371&oldid=prev 2012-06-22T16:16:30Z

<p>Created page with &quot;<a href="/index.php?title=Category:Knowledge&amp;action=edit&amp;redlink=1" class="new" title="Category:Knowledge (page does not exist)">Category:Knowledge</a> == /etc/ldap.conf == &lt;syntaxhighlight lang=&quot;bash&quot;&gt; base dc=infusedsites,dc=com nss_base_passwd ou=People,dc=infusedsites,dc=com uri ldap://10.0.123.9...&quot;</p> <p><b>New page</b></p><div>[[Category:Knowledge]]<br /> <br /> <br /> == /etc/ldap.conf ==<br /> <br /> &lt;syntaxhighlight lang=&quot;bash&quot;&gt;<br /> base dc=infusedsites,dc=com<br /> nss_base_passwd ou=People,dc=infusedsites,dc=com<br /> uri ldap://10.0.123.9:389/<br /> ssl no<br /> tls_cacertdir /etc/openldap/cacerts<br /> pam_password md5<br /> sudoers_base ou=sudoers,dc=infusedsites,dc=com<br /> &lt;/syntaxhighlight&gt;<br /> <br /> == /etc/nsswitch.conf ==<br /> &lt;syntaxhighlight lang=&quot;bash&quot;&gt;<br /> passwd: files ldap<br /> shadow: files ldap<br /> group: files ldap<br /> sudoers: files ldap<br /> &lt;/syntaxhighlight&gt;<br /> == /etc/pam.d/system-auth ==<br /> <br /> &lt;syntaxhighlight lang=&quot;bash&quot;&gt;<br /> #%PAM-1.0<br /> # This file is auto-generated.<br /> # User changes will be destroyed the next time authconfig is run.<br /> auth required pam_env.so<br /> auth required pam_hulk.so<br /> auth sufficient pam_unix.so nullok try_first_pass<br /> auth sufficient pam_ldap.so use_first_pass<br /> auth requisite pam_succeed_if.so uid &gt;= 500 quiet<br /> auth required pam_deny.so<br /> <br /> account required pam_unix.so<br /> account sufficient pam_ldap.so<br /> account sufficient pam_succeed_if.so uid &lt; 500 quiet<br /> account required pam_permit.so<br /> <br /> password requisite pam_cracklib.so try_first_pass retry=3<br /> password sufficient pam_unix.so md5 shadow nullok try_first_pass use_authtok<br /> password sufficient pam_ldap.so use_first_pass<br /> password required pam_deny.so<br /> <br /> session optional pam_keyinit.so revoke<br /> session required pam_limits.so<br /> session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid<br /> session optional pam_ldap.so<br /> session optional pam_mkhomedir.so skel=/etc/skel umask=0022<br /> session required pam_unix.so<br /> &lt;/syntaxhighlight&gt;<br /> <br /> == /etc/fstab ==<br /> <br /> &lt;syntaxhighlight lang=&quot;bash&quot;&gt;<br /> 10.0.123.9:/home/ldap /home/ldap nfs rsize=8192,wsize=8192,noatime,timeo=5,intr 0 0<br /> &lt;/syntaxhighlight&gt;<br /> <br /> == Install nfs-utils ==<br /> <br /> &lt;syntaxhighlight lang=&quot;bash&quot;&gt;<br /> yum -y install nfs-utils<br /> chkconfig nfs on<br /> chkconfig portmap on<br /> service portmap start<br /> mkdir /home/ldap<br /> mount /home/ldap<br /> &lt;/syntaxhighlight&gt;</div>

Smsldoo