Displaying 15 results from an estimated 15 matches for "ldap_group_object_class".
2013 Apr 14
1
sssd getent problem with Samba 4.0
...cn=lynn2,cn=Users,dc=hh3,dc=site
ldap_default_authtok = xx
ldap_default_authtok_type = password
ldap_user_object_class = person
ldap_user_name = samAccountName
ldap_user_uid_number = uidNumber
ldap_user_gid_number = gidNumber
ldap_user_home_directory = unixHomeDirectory
ldap_user_shell = loginShell
ldap_group_object_class = group
#ldap_user_search_filter =(&(objectCategory=User)(uidNumber=*))
I've tried
enumerate = true
and it works as expected but strangely, only for the first time after
sssd is started. it then returns only local users.
Any ideas?
Cheers,
Steve
2016 Sep 02
3
Samba4 and sssd authentication not working due "Transport encryption required."
...s,dc=xxx,dc=xxx
ldap_default_authtok_type = password
ldap_default_authtok = xxxxxxxx
ldap_schema = rfc2307bis
ldap_user_search_base = dc=xx,dc=xx
ldap_user_object_class = user
ldap_user_home_directory = unixHomeDirectory
ldap_user_principal = userPrincipalName
ldap_group_search_base = dc=xx,dc=xx
ldap_group_object_class = group
ldap_group_member = memberOf
access_provider = simple
simple_allow_groups = IT
ldap_access_order = expire
ldap_account_expire_policy = ad
ldap_force_upper_case_realm = true
[domain/default]
cache_credentials = False
2016 Sep 02
4
Samba4 and sssd authentication not working due "Transport encryption required."
...>
> > ldap_schema = rfc2307bis
> >
> > ldap_user_search_base = dc=xx,dc=xx
> > ldap_user_object_class = user
> > ldap_user_home_directory = unixHomeDirectory
> > ldap_user_principal = userPrincipalName
> > ldap_group_search_base = dc=xx,dc=xx
> > ldap_group_object_class = group
> > ldap_group_member = memberOf
> > access_provider = simple
> >
> >
> >
> > simple_allow_groups = IT
> >
> >
> > ldap_access_order = expire
> > ldap_account_expire_policy = ad
> > ldap_force_upper_case_realm = true
>...
2014 Jul 23
1
sssd problems after dc1 is no longer online
...p_uri = ldap://x.y.143.15, ldap://x.y.143.16
ldap_search_base = dc=samba,dc=merit,dc=unu,dc=edu
ldap_user_object_class = user
ldap_user_name = samAccountName
ldap_user_uid_number = uidNumber
ldap_user_gid_number = gidNumber
ldap_user_home_directory = unixHomeDirectory
ldap_user_shell = loginShell
ldap_group_object_class = group
ldap_group_name = cn
ldap_group_member = member
I hope this is enough info, and one of the sssd guru's here can assist.
Again: everything worked while dc1 was online, things stopped working
when it was taken offline.
Kind regards,
Mourik Jan
2016 Sep 03
1
Samba4 and sssd authentication not working due "Transport encryption required."
...>>
>>>> ldap_user_search_base = dc=xx,dc=xx
>>>> ldap_user_object_class = user
>>>> ldap_user_home_directory = unixHomeDirectory
>>>> ldap_user_principal = userPrincipalName
>>>> ldap_group_search_base = dc=xx,dc=xx
>>>> ldap_group_object_class = group
>>>> ldap_group_member = memberOf
>>>> access_provider = simple
>>>>
>>>>
>>>>
>>>> simple_allow_groups = IT
>>>>
>>>>
>>>> ldap_access_order = expire
>>>> ldap_accou...
2013 Oct 01
1
Should I forget sssd ?
...ur.radiodjiido.nc
> ldap_search_base = dc=radiodjiido,dc=nc
> ldap_user_object_class = user
> ldap_user_name = samAccountName
> ldap_user_uid_number = uidNumber
> ldap_user_gid_number = gidNumber
> ldap_user_home_directory = unixHomeDirectory
> ldap_user_shell = loginShell
> ldap_group_object_class = group
> ldap_group_search_base = dc=radiodjiido,dc=nc
> ldap_group_name = cn
> ldap_group_member = member
> ldap_sasl_mech = gssapi
> #ldap_sasl_authid = serveur$
> ldap_sasl_authid = serveur$@RADIODJIIDO.NC
> krb5_keytab = /etc/krb5.sssd.keytab
> ldap_krb5_init_creds = tr...
2016 Sep 02
0
Samba4 and sssd authentication not working due "Transport encryption required."
...rd
> ldap_default_authtok = xxxxxxxx
>
> ldap_schema = rfc2307bis
>
> ldap_user_search_base = dc=xx,dc=xx
> ldap_user_object_class = user
> ldap_user_home_directory = unixHomeDirectory
> ldap_user_principal = userPrincipalName
> ldap_group_search_base = dc=xx,dc=xx
> ldap_group_object_class = group
> ldap_group_member = memberOf
> access_provider = simple
>
>
>
> simple_allow_groups = IT
>
>
> ldap_access_order = expire
> ldap_account_expire_policy = ad
> ldap_force_upper_case_realm = true
> [domain/default]
> cache_credentials = False
>...
2014 Jan 06
0
getent passwd/group worsk but user authentication does not work (SAMBA4/SSSD) (Urgent request)
...ok_type = password
ldap_default_authtok = 5ER3zx:V
ldap_schema = rfc2307bis
ldap_user_search_base = dc=companydomain,dc=acc
ldap_user_object_class = user
ldap_user_home_directory = unixHomeDirectory
ldap_user_principal = userPrincipalName
ldap_group_search_base = dc=companydomain,dc=acc
ldap_group_object_class = group
Can any one please help me to fix the authentication ??
Kind Regards
2014 Jul 28
0
[sssd] Not seeing Secondary Groups
...ldap_user_uid_number = uidNumber
ldap_user_gid_number = gidNumber
ldap_user_objectsid = objectSid
ldap_user_member_of = memberOf
ldap_user_gecos = cn
ldap_group_search_base = DC=EXAMPLE,DC=COM?subtree?&(objectclass=group)(gidnumber=*)
ldap_group_objectsid = objectSid
ldap_group_member = member
ldap_group_object_class = group
ldap_group_uuid = objectGUID
ldap_group_nesting_level = 0
krb5_auth_timeout = 5
krb5_renew_interval = 60
krb5_realm = EXAMPLE.COM
krb5_server = ad.example.com
ldap_krb5_init_creds = true
/etc/nsswitch
passwd: files sss
shadow: files sss
group: files sss
initgroups: files ss...
2016 Feb 02
3
Mac OS X and ACL's
....DOMAIN.COM krb5_server = dc01.auth.domain.com krb5_kpasswd = dc01.auth.domain.com ldap_krb5_keytab = /etc/krb5.sssd.keytab ldap_user_object_class = user ldap_user_name = samAccountName ldap_user_home_directory = unixHomeDirectory ldap_user_principal = userPrincipalName ldap_user_shell = loginShell ldap_group_object_class = group
-----------------------------------------------------------------------------------------------------------------
Here is the getfacl on my Folder that I'm trying to get to respect ACL's on for the Macs:
getfacl /Groups/Digital\ Magazine/
getfacl: Removing leading '/...
2014 Feb 18
0
sssd + samba4 not working (yet)
...ne.earth.local
ldap_search_base = dc=earth,dc=local
dyndns_update=false
ldap_id_mapping=false
ldap_user_object_class = user
ldap_user_name = samAccountName
ldap_user_uid_number = uidNumber
ldap_user_gid_number = gidNumber
ldap_user_home_directory = unixHomeDirectory
ldap_user_shell = loginShell
ldap_group_object_class = group
ldap_group_name = cn
ldap_group_member = member
Any idea what I am missing? Can I enable some debugging somewhere to see
what I am doing wrong?
Many thanks in advance.
regards,
Kenneth
P.S.:
- OS is Debian Wheezy on a B3
- Samba is 4.1.4 compiled from sernet
- BIND 9.8.4-rpz2+rl005.12...
2016 Sep 03
0
Samba4 and sssd authentication not working due "Transport encryption required."
...307bis
> > >
> > > ldap_user_search_base = dc=xx,dc=xx
> > > ldap_user_object_class = user
> > > ldap_user_home_directory = unixHomeDirectory
> > > ldap_user_principal = userPrincipalName
> > > ldap_group_search_base = dc=xx,dc=xx
> > > ldap_group_object_class = group
> > > ldap_group_member = memberOf
> > > access_provider = simple
> > >
> > >
> > >
> > > simple_allow_groups = IT
> > >
> > >
> > > ldap_access_order = expire
> > > ldap_account_expire_policy = ad
>...
2016 Feb 02
0
Mac OS X and ACL's
....DOMAIN.COM krb5_server = dc01.auth.domain.com krb5_kpasswd = dc01.auth.domain.com ldap_krb5_keytab = /etc/krb5.sssd.keytab ldap_user_object_class = user ldap_user_name = samAccountName ldap_user_home_directory = unixHomeDirectory ldap_user_principal = userPrincipalName ldap_user_shell = loginShell ldap_group_object_class = group
>
>
>
> -----------------------------------------------------------------------------------------------------------------
>
>
> Here is the getfacl on my Folder that I'm trying to get to respect ACL's on for the Macs:
>
>
>
> getfacl /Groups/Digital\...
2016 Feb 02
2
Mac OS X and ACL's
....DOMAIN.COM krb5_server = dc01.auth.domain.com krb5_kpasswd = dc01.auth.domain.com ldap_krb5_keytab = /etc/krb5.sssd.keytab ldap_user_object_class = user ldap_user_name = samAccountName ldap_user_home_directory = unixHomeDirectory ldap_user_principal = userPrincipalName ldap_user_shell = loginShell ldap_group_object_class =
g
roup
>
>
>
> -----------------------------------------------------------------------------------------------------------------
>
>
> Here is the getfacl on my Folder that I'm trying to get to respect ACL's on for the Macs:
>
>
>
> getfacl...
2018 Jul 20
2
SSSD on CentOS 7 failing to start when connecting to 4.8.3 AD via LDAP
...che_credentials = true
id_provider = ldap
#auth_provider = ldap
ldap_schema = rfc2307bis
ldap_user_principal = userPrincipalName
ldap_user_fullname = displayName
ldap_user_name = sAMAccountName
ldap_user_object_class = user
ldap_user_home_directory = unixHomeDirectory
ldap_user_shell = loginShell
ldap_group_object_class = group
ldap_force_upper_case_realm = True
ldap_uri = ldap://192.168.192.50
ldap_search_base = dc=ad,dc=company,dc=com
ldap_id_use_start_tls = false
ldap_tls_reqcert = never
ldap_tls_cacert = /etc/sssd/ca.company.com.crt
access_provider = ldap
ldap_access_filter =
memberOf=cn=ServerAdmins,ou=Gro...