LDAP

From Athenaeum
Jump to: navigation, search


AD LDS Ops Guide
CentOS6 LDAP

Adding Linux Clients to LDAP/AD

RHEL against AD

Ubunut/Debian

  1. Install samba-common krb5-user sssd
  2. Configure Samba
  3. Configure Kerberos
  4. Configure SSSD

LDAP Search Examples

  • AD GSSAPI Kerberos search
ldapsearch -H ldap://server.ad.example.com/ -Y GSSAPI -N -b "dc=ad,dc=example,dc=com" "(&(objectClass=user)(sAMAccountName=aduser))
  • Basic Bind Auth
ldapsearch -x -H ldap://nexusdc.nexus.lan:389 -D "cn=james,ou=Users,dc=nexus,dc=lan" -b "dc=nexus,dc=lan" -W

Troubleshooting

  • SSSD Issues
rm -f /var/log/sssd/*; service sssd stop; rm -f /var/lib/sss/db/*; service sssd start
  • DNS Issues
sudo net ads dns register -U james -d 5