similar to: CentOS7: Setting up ldap over TLS in kickstart file

Displaying 20 results from an estimated 300 matches similar to: "CentOS7: Setting up ldap over TLS in kickstart file"

2010 Oct 06
2
LDAP authentication on a remote server (via ldaps://)
Hello, I have a central repository of users/groups based on OpenLDAP which is working on a remote LAN (servers share users credentials and mount their home directories via NFS). They use non-encrypted ldap restricted to the local network. Now, I have a few servers in our local office and I would like them to authenticate from the remote LDAP server using encryption via ldaps://. (at this stage,
2018 Jun 14
0
CentOS7: Setting up ldap over TLS in kickstart file
On Thu, 14 Jun 2018, Patrick Begou wrote: > Hi, > > I'm facing a problem with setting up LDAP+TLS client authentication in a > kickstart script on CentOS7 for several days. > > Setting up manualy the config with system-config-authentication works but I > need to automate this in kickstart for deploying cluster nodes. > This show that the server side is running fine.
2014 Aug 29
1
C7: need authconfig against LDAP
Hi all, On a C6 box, when I want to enable LDAP authentication, I issue: # yum -y install nss-pam-ldapd pam_ldap nscd # authconfig --enableldap --enableldapauth --enablemkhomedir \ --ldapserver=ldap://ldap-blabla/ \ --ldapbasedn="blabla" \ --enablecache --disablefingerprint \ --kickstart --update All is working fine, the directory structure is fine and compliant.
2006 Jun 02
1
Redhat Authconfig errors
Ok, I've got most everything setup, but I'm not able to confirm pam_ldap and nss_ldap are working properly. (Actually given the examples in SBE, they still appear to be returning information from local files rather than the ldap info.) I wanted to go back and check my authconfig and reset the parameters. However now when I do a authconfig I get this: ---- authconfig --enablecache
2010 Jan 01
1
kickstart and logins.def question
Hello all: Happy New Year to everyone and thank you for all the knowledge this past year. I have a hopefully simple question about kickstart. In the authconfig section I can enable ldap, credential caching, etc.. Using the GUI tool there's an option to create the user home directories on first login. The docs don't show a similar option for authconfig in kickstart. For now I'm
2011 Oct 31
3
NSS ldap problems
I'm having trouble setting up ldap based authenication. I have a virtual (KVM) CentOS 5.4 box set up to authenticate to a 389 (fedora) directory server, and that works fine. However, I set up a virtual box running CentOS 6, and I can't get it to authenicate. I've run authconfig with the appropriate flags, ldapsearch properly finds the data, but I can't log in. /var/log/secure
2014 Jan 19
1
sudo (+ldap+kerberos) not accepting password
So I have this centos 5.10 box which authenticates network users against ldap(authorizing)+kerberos(authentication). And I now would like to have sudo be able to allow admins (netgroup chinbeards) to sudo about. I am not using sssd though (yet). Here is the output of me trying sudo (debug on): [raub at centos5-x64 ~]$ sudo pwd LDAP Config Summary =================== uri
2015 Mar 31
6
How to decrypt rootpassword form kickstart file
Hi Team, I have the kick start file where my root password is store like # Root password rootpw --iscrypted $1$1SItJOAg$UM9n7lRFK1/OCs./rgQtQ/ # System authorization information auth --useshadow --passalgo=sha512 Is there any way to decry pt the password and get it as plain text. I know single user mode works but my case it in remote site. Thanks, Jegadeesh
2014 Jun 10
2
How to configure user accounts without NIS
The company where I work is mostly a Windows shop, but I run a few CentOS servers and desktops. I have configured my systems as follows with Kickstart: authconfig --enablemd5 --passalgo=sha512 --enablenis --nisdomain=XXX \ --nisserver=nis1.XXX.com,nis2.XXX.com --useshadow --enablekrb5 \ --krb5realm=XXX.COM --krb5kdc=ldap.XXX.com --krb5adminserver=ldap.XXX.com The /etc/nsswitch.conf file
2011 Aug 25
1
Help integrating CentOS 6 with existing network login infrastructure
I've updated my kickstart configuration files to work with CentOS 6 and am most of the way there integrating a CentOS 6 system into our LDAP/NIS environment. My authconfig line in the kickstart file is as follows: authconfig --enablemd5 --passalgo=sha512 --enablenis --nisdomain=XXX --nisserver=nis.XXX.com --useshadow --enablekrb5 --krb5realm=XXX.COM --krb5kdc=ldap.XXX.com
2014 Jan 26
1
Configuring RHEL6 Samba4 DC for local accounts
I've configured a new RHEL DC with sernet samba 4.1.4 and a domain just upgraded from classic with an LDAP backend. I need to configure the DC with user accounts and since: * I can't use winbind on a DC * I can't use SSSD with the sernet packages it looks like the best thing to use is LDAP. I've configured it with: authconfig --enableldap --enableldapauth
2015 May 07
2
Best way to integrate CentOS in Windows AD environment
We currently use a combination of Kerberos and NIS to manage users on our CentOS 6 systems in a Windows AD environment. NIS is provided by Windows Services for UNIX (or something named similarly), which has some issues, and is also not going to be supported by Microsoft in the future. NIS supplies the passed file as well as the auto mount map for home directories as shown by this excerpt from
2014 Jan 03
1
SSSD and usermod
Hi! How to get usermod working with SSSD/389DS ? We have SSSD set up on our server and it uses 389DS. SSSD was enabled with the following command: authconfig --enablesssd --enablesssdauth --ldapbasedn=dc=example,dc=com --enableshadow --enablemkhomedir --enablelocauthorize --update Running for example "usermod -L username" returns: usermod: user 'username' does not exist in
2015 Jun 08
2
UPower: 95-upower-hid.rules update
2015-06-08 13:09 GMT+02:00 Bastien Nocera <hadess at hadess.net>: > On Mon, 2015-06-08 at 10:13 +0200, Arnaud Quette wrote: > > -ATTRS{idVendor}=="06da", ENV{UPOWER_VENDOR}="Liebert" > > > > +ATTRS{idVendor}=="06da", ENV{UPOWER_VENDOR}="Phoenixtec Power Co., Ltd" > > I'm guessing this would require changes in NUT, so I
2006 Jun 23
1
Samba 3.0.22: share be r/w for LDAP-authenticated users, r/o for anonymous
Hi there, we need to implement the following scenario: - Samba server 3.0.22 (NOT acting as a domain controller; we don't use Windows networking domains) - users use Linux and Windoze - anonymous users accessing a certain share should be granted read-only access - successfully authenticated users should be given read-write access - authentication should be performed against an LDAP that
2009 Sep 29
3
Script consumes memory
I have the following script that when executed, consumes memory and makes the system inaccessible. All process are halted. First, I don't understand what is wrong with the script Secondly, I'm surprised that Linux allows this to run unchecked to the detriment of the entire system. ---- SCRIPT ----- #!/bin/sh FTP="/usr/bin/ftp" # VMID="asystem.ourcompany.com"
2020 May 23
1
authconfig vs authselect
I had the habit to use authconfig --passalgo=sha512 --update but in EL8 its not supported anymore. The authselect-compat package is installed (and it says "not supported anymore and have no effect). Whats the equivalent call using the new tool "authselect"? -- Thanks Leon
2006 Jan 18
1
LDAP direct authentication Problem
Hi I need to authenticate all the asterisk users from the LDAP server instead of from sip.conf. If anybody already have done this then please guide. I tried to integrate authenticate asterisk users from LDAP using the open source project astirectory1.2.0. After using the astirectory1.2.0 , now when the asterisk starts then it registeres with the LDAP. Following logs shows it. Jan 18 18:36:20
2016 Aug 25
1
dracut-initqueue timeout with virt-install... but it works (kinda?)
Hello, I?m using virt-install to build a guest system with CentOS. The system boots up, times out with dracut-initqueue timeout and drops me into an emergency shell. If I exit the shell the install continues and I get a working machine. Any ideas? virt-install \ -n TEST \ -r 8192 \ --os-type=linux \ --disk=/vm-images/test.img,device=disk,bus=virtio,size=100,format=raw \
2012 Jan 17
2
Java+Tomcat on CentOS 6.x
So whats good practice for installing Java/JDK and Tomcat for EL6 these days? The base repository included Tomcat6.6 is built with GCJ which I'd rather avoid. I'm fine with using OpenJDK ... Do most folks just use the Apache tarball for Tomcat and install it in a user directory or /opt/something ? -- john r pierce N 37, W 122 santa cruz ca