Displaying 20 results from an estimated 300 matches similar to: "CentOS7: Setting up ldap over TLS in kickstart file"
2010 Oct 06
2
LDAP authentication on a remote server (via ldaps://)
Hello,
I have a central repository of users/groups based on OpenLDAP which is
working on a remote LAN (servers share users credentials and mount
their home directories via NFS). They use non-encrypted ldap
restricted to the local network.
Now, I have a few servers in our local office and I would like them to
authenticate from the remote LDAP server using encryption via
ldaps://.
(at this stage,
2018 Jun 14
0
CentOS7: Setting up ldap over TLS in kickstart file
On Thu, 14 Jun 2018, Patrick Begou wrote:
> Hi,
>
> I'm facing a problem with setting up LDAP+TLS client authentication in a
> kickstart script on CentOS7 for several days.
>
> Setting up manualy the config with system-config-authentication works but I
> need to automate this in kickstart for deploying cluster nodes.
> This show that the server side is running fine.
2014 Aug 29
1
C7: need authconfig against LDAP
Hi all,
On a C6 box, when I want to enable LDAP authentication, I issue:
# yum -y install nss-pam-ldapd pam_ldap nscd
# authconfig --enableldap --enableldapauth --enablemkhomedir \
--ldapserver=ldap://ldap-blabla/ \
--ldapbasedn="blabla" \
--enablecache --disablefingerprint \
--kickstart --update
All is working fine, the directory structure is fine and compliant.
2006 Jun 02
1
Redhat Authconfig errors
Ok, I've got most everything setup, but I'm not able to confirm
pam_ldap and nss_ldap are working properly. (Actually given the
examples in SBE, they still appear to be returning information from
local files rather than the ldap info.)
I wanted to go back and check my authconfig and reset the parameters.
However now when I do a authconfig I get this:
----
authconfig --enablecache
2010 Jan 01
1
kickstart and logins.def question
Hello all:
Happy New Year to everyone and thank you for all the knowledge this past year.
I have a hopefully simple question about kickstart. In the
authconfig section I can enable ldap, credential caching, etc.. Using
the GUI tool there's an option to create the user home directories on
first login. The docs don't show a similar option for authconfig in
kickstart. For now I'm
2011 Oct 31
3
NSS ldap problems
I'm having trouble setting up ldap based authenication.
I have a virtual (KVM) CentOS 5.4 box set up to authenticate to a 389 (fedora) directory server, and that works fine.
However, I set up a virtual box running CentOS 6, and I can't get it to authenicate.
I've run authconfig with the appropriate flags, ldapsearch properly finds the data, but I can't log in. /var/log/secure
2014 Jan 19
1
sudo (+ldap+kerberos) not accepting password
So I have this centos 5.10 box which authenticates network users
against ldap(authorizing)+kerberos(authentication). And I now would
like to have sudo be able to allow admins (netgroup chinbeards) to
sudo about. I am not using sssd though (yet).
Here is the output of me trying sudo (debug on):
[raub at centos5-x64 ~]$ sudo pwd
LDAP Config Summary
===================
uri
2015 Mar 31
6
How to decrypt rootpassword form kickstart file
Hi Team,
I have the kick start file where my root password is store like
# Root password
rootpw --iscrypted $1$1SItJOAg$UM9n7lRFK1/OCs./rgQtQ/
# System authorization information
auth --useshadow --passalgo=sha512
Is there any way to decry pt the password and get it as plain text.
I know single user mode works but my case it in remote site.
Thanks,
Jegadeesh
2014 Jun 10
2
How to configure user accounts without NIS
The company where I work is mostly a Windows shop, but I run a few CentOS
servers and desktops. I have configured my systems as follows with Kickstart:
authconfig --enablemd5 --passalgo=sha512 --enablenis --nisdomain=XXX \
--nisserver=nis1.XXX.com,nis2.XXX.com --useshadow --enablekrb5 \
--krb5realm=XXX.COM --krb5kdc=ldap.XXX.com --krb5adminserver=ldap.XXX.com
The /etc/nsswitch.conf file
2011 Aug 25
1
Help integrating CentOS 6 with existing network login infrastructure
I've updated my kickstart configuration files to work with CentOS 6 and am most of the way there integrating a CentOS 6 system into our LDAP/NIS environment. My authconfig line in the kickstart file is as follows:
authconfig --enablemd5 --passalgo=sha512 --enablenis --nisdomain=XXX --nisserver=nis.XXX.com --useshadow --enablekrb5 --krb5realm=XXX.COM --krb5kdc=ldap.XXX.com
2014 Jan 26
1
Configuring RHEL6 Samba4 DC for local accounts
I've configured a new RHEL DC with sernet samba 4.1.4 and a domain just
upgraded from classic with an LDAP backend.
I need to configure the DC with user accounts and since:
* I can't use winbind on a DC
* I can't use SSSD with the sernet packages
it looks like the best thing to use is LDAP. I've configured it with:
authconfig --enableldap --enableldapauth
2015 May 07
2
Best way to integrate CentOS in Windows AD environment
We currently use a combination of Kerberos and NIS to manage users on our CentOS 6 systems in a Windows AD environment. NIS is provided by Windows Services for UNIX (or something named similarly), which has some issues, and is also not going to be supported by Microsoft in the future. NIS supplies the passed file as well as the auto mount map for home directories as shown by this excerpt from
2014 Jan 03
1
SSSD and usermod
Hi!
How to get usermod working with SSSD/389DS ?
We have SSSD set up on our server and it uses 389DS.
SSSD was enabled with the following command:
authconfig --enablesssd --enablesssdauth --ldapbasedn=dc=example,dc=com
--enableshadow --enablemkhomedir --enablelocauthorize --update
Running for example "usermod -L username" returns:
usermod: user 'username' does not exist in
2015 Jun 08
2
UPower: 95-upower-hid.rules update
2015-06-08 13:09 GMT+02:00 Bastien Nocera <hadess at hadess.net>:
> On Mon, 2015-06-08 at 10:13 +0200, Arnaud Quette wrote:
> > -ATTRS{idVendor}=="06da", ENV{UPOWER_VENDOR}="Liebert"
> >
> > +ATTRS{idVendor}=="06da", ENV{UPOWER_VENDOR}="Phoenixtec Power Co., Ltd"
>
> I'm guessing this would require changes in NUT, so I
2006 Jun 23
1
Samba 3.0.22: share be r/w for LDAP-authenticated users, r/o for anonymous
Hi there,
we need to implement the following scenario:
- Samba server 3.0.22 (NOT acting as a domain controller; we don't use
Windows networking domains)
- users use Linux and Windoze
- anonymous users accessing a certain share should be granted read-only
access
- successfully authenticated users should be given read-write access
- authentication should be performed against an LDAP that
2009 Sep 29
3
Script consumes memory
I have the following script that when executed, consumes memory and
makes the system inaccessible. All process are halted.
First, I don't understand what is wrong with the script
Secondly, I'm surprised that Linux allows this to run unchecked to the
detriment of the entire system.
---- SCRIPT -----
#!/bin/sh
FTP="/usr/bin/ftp"
#
VMID="asystem.ourcompany.com"
2020 May 23
1
authconfig vs authselect
I had the habit to use
authconfig --passalgo=sha512 --update
but in EL8 its not supported anymore.
The authselect-compat package is installed
(and it says "not supported anymore and have no effect).
Whats the equivalent call using the new tool "authselect"?
--
Thanks
Leon
2006 Jan 18
1
LDAP direct authentication Problem
Hi
I need to authenticate all the asterisk users from the LDAP server instead
of from sip.conf.
If anybody already have done this then please guide.
I tried to integrate authenticate asterisk users from LDAP using the open
source project astirectory1.2.0.
After using the astirectory1.2.0 , now when the asterisk starts then it
registeres with the LDAP. Following logs shows it.
Jan 18 18:36:20
2016 Aug 25
1
dracut-initqueue timeout with virt-install... but it works (kinda?)
Hello,
I?m using virt-install to build a guest system with CentOS. The system boots up, times out with dracut-initqueue timeout and drops me into an emergency shell. If I exit the shell the install continues and I get a working machine.
Any ideas?
virt-install \
-n TEST \
-r 8192 \
--os-type=linux \
--disk=/vm-images/test.img,device=disk,bus=virtio,size=100,format=raw \
2012 Jan 17
2
Java+Tomcat on CentOS 6.x
So whats good practice for installing Java/JDK and Tomcat for EL6 these
days? The base repository included Tomcat6.6 is built with GCJ which
I'd rather avoid. I'm fine with using OpenJDK ... Do most folks just use
the Apache tarball for Tomcat and install it in a user directory or
/opt/something ?
--
john r pierce N 37, W 122
santa cruz ca