[CentOS] Centos 7 - AD authentication
Hello everyone. I have a fresh install of Centos 7 server. I would like to use my AD users to login via ssh into this Centos server. In version 6 I had to configure /etc/nslcd.conf and pam. Do you know any good tutorials or do yo have any advise how to start and which packets I need. Thanks for answers. Best regards. Luka ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7 - AD authentication
This is very simple in the new CentOS 7: realm join –client-software=sssd example.com -U mydomainadmin reboot enjoy -- Sent from the Delta quadrant using Borg technology! Nux! www.nux.ro - Original Message - From: Luka Filipic zim...@gmail.com To: centos@centos.org Sent: Friday, 25 July, 2014 2:32:49 PM Subject: [CentOS] Centos 7 - AD authentication Hello everyone. I have a fresh install of Centos 7 server. I would like to use my AD users to login via ssh into this Centos server. In version 6 I had to configure /etc/nslcd.conf and pam. Do you know any good tutorials or do yo have any advise how to start and which packets I need. Thanks for answers. Best regards. Luka ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7 - AD authentication
Luka Filipic wrote: Hello everyone. I have a fresh install of Centos 7 server. I would like to use my AD users to login via ssh into this Centos server. In version 6 I had to configure /etc/nslcd.conf and pam. Do you know any good tutorials or do yo have any advise how to start and which packets I need. I'm not fully up to speed yet - we've *just* set up a workstation to play with with a fresh upstream release - but in nssswitch we're telling it to use files sss, and in sssd.d/sssd.conf, our domain, that our auth_provider is krb5 (we are using kerberos), id_provider is ldap, and a few other lines. We also have krb5 configured to use the AD. Hope this is a start. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7 - AD authentication
On 7/25/2014 10:34 AM, Nux! wrote: This is very simple in the new CentOS 7: realm join –client-software=sssd example.com -U mydomainadmin I just tried it, and it really is MUCH simpler than it used to be. I had to install realmd first, which actually told me what other packages I'd need that weren't actual dependencies (samba-common, oddjob, sssd, and a couple others). Then I ran Nux!'s command. I also needed to permit a user to log in (maybe because I didn't reboot), but the example in RH's integration guide (section 3.4) didn't work for me. I figured out that realm permit u...@domain.com did the trick, and I could log in to the console as u...@domain.com or via ssh as u...@domain.com@hostname. Two lines (not counting installing the packages) was all it took. -- -Chris ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos