To me, these instructions are very vague - for example it completely omits LDAP security configuration for the automounter (stored in /etc/autofs_ldap_auth.conf). How does the automounter bind to the ldap server? Anonymously?
I would not recommend it.

I would recommend to configure automounter to use the host/ principal in the local Kerberos system database and bind using SASL/GSSAPI instead. It is more secure and elegant solution.


On 30.06.2011 17:26, Adam Young wrote:
Good point.

 Take a look at the test day instructions, I found them very useful for setting 
up both SUDO and automount.

On 06/30/2011 11:08 AM, Ondrej Valousek wrote:

On 30.06.2011 16:55, Rob Crittenden wrote:
Look at the output of this for details: ipa help automount

I see, thanks!
It would be nice to update man pages like:
to say something like:
So people know more automounter's ability to locate ldap server via DNS SRV....


Freeipa-users mailing list

Freeipa-users mailing list
Freeipa-users mailing list

Reply via email to