search for: radiodjiido

...ow. 1 Windows VM has been setup on server to make AD tasks using Administrator account. Trying to use nslcd + kerberos : created a user in AD: samba-tool user add ldap My_secret_password samba-tool user setexpiry ldap --noexpiry created spn and exported keytab: samba-tool spn add nslcd/serveur.radiodjiido.nc ldap samba-tool domain exportkeytab /etc/krb5.nslcd.keytab --principal=ldap chown nslcd:root /etc/krb5.nslcd.keytab chmod 600 /etc/krb5.nslcd.keytab configured nslcd: grep ^[^#] /etc/nslcd.conf -> uid nslcd gid nslcd uri ldap://serveur.radiodjiido.nc base DC=radiodjiido,DC=nc map passwd...

...n What needs to be done: Linux services to auth to AD From what I've read, sssd is the more secure solution to achieve this, but ... Using sssd 1.11.1 : files configuration: 1) > sudo cat /etc/sssd/sssd.conf > [sssd] > services = nss, pam > config_file_version = 2 > domains = radiodjiido.nc > [nss] > [pam] > [domain/radiodjiido.nc] > dyndns_update = false > ad_hostname = serveur.radiodjiido.nc > ad_server = serveur.radiodjiido.nc > ad_domain = radiodjiido.nc > ldap_schema = ad > id_provider = ad > access_provider = simple > enumerate = true > cac...

...pop3-login { > inet_listener pop3 { > address = * > port = 110 > } > inet_listener pop3s { > address = * > port = 995 > ssl = yes > } > } > ssl = required > ssl_ca = </etc/postfix/tls/cacert.pem > ssl_cert = </etc/postfix/tls/radiodjiido-cert.pem > ssl_key = </etc/postfix/tls/radiodjiido-key.pem > ssl_verify_client_cert = yes > userdb { > args = /etc/dovecot/dovecot-ldap-userdb.conf.ext > driver = ldap > } > protocol imap { > imap_client_workarounds = delay-newmail > imap_max_line_length = 64 k...