Setup di ldap con gli script

Da sia.
Vai alla navigazione Vai alla ricerca

Bootstrap LDAP per Debian

Contributo di Alberto Corni.

Configurare sssd.conf

     cp /usr/share/doc/sssd-common/examples/sssd-example.conf /etc/sssd/sssd.conf
     chmod 600 /etc/sssd/sssd.conf
     chown root:root /etc/sssd/sssd.conf
     cat /etc/sssd/sssd.conf
     cat <<'      EOF' >> /etc/sssd/sssd.conf
      # --- unimore changes ---
      [domain/LDAP]
      id_provider = ldap
      auth_provider = ldap
      ldap_schema = rfc2307
      ldap_uri = ldap://ldap5.unimore.it
      ldap_search_base = dc=unimore,dc=it
      ldap_tls_reqcert = demand
      cache_credentials = true
      enumerate = False
     EOF
     sed -i "s/^       //" /etc/sssd/sssd.conf

ma sssd richiede anche questo: 

     sed -i "s/; domains = LDAP/domains = LDAP/" /etc/sssd/sssd.conf


Non trova mosh: 

     cd /bin
     ln -s bash mosh


Copiare rapidamente i certificati

     mkdir ~/tmp; cd ~/tmp
     wget -e robots=off -r --accept '*.crt,*.pem,*.cer' https://apps.lettere.unimore.it/samba-ldap/certs
     mv $( find /root/tmp/apps.lettere.unimore.it -type f ) /etc/ssl/certs
     /usr/sbin/update-ca-certificates
Estratto da "https://wiki.unimore.it/index.php?title=Setup_di_ldap_con_gli_script&oldid=18271"