Advertisement
Guest User

Quickie sssd.conf

a guest
Mar 18th, 2015
3,030
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.04 KB | None | 0 0
  1. # sssd.conf
  2.  
  3. [domain/default]
  4.  
  5. ldap_id_use_start_tls = False
  6. ldap_schema = rfc2307bis
  7. ldap_search_base = dc=ad,dc=blahblah,dc=com
  8. krb5_realm = AD.BLAHBLAH.COM
  9. krb5_server = dc1.ad.blahblah.com,dc2.ad.blahblah.com
  10. id_provider = ldap
  11. auth_provider = ldap
  12. chpass_provider = ldap
  13. ldap_uri = ldap://dc1.ad.blahblah.com,ldap://dc2.ad.blahblah.com
  14. krb5_kdcip = dc1.ad.blahblah.com,dc2.ad.blahblah.com
  15. cache_credentials = True
  16. ldap_tls_cacertdir = /etc/openldap/cacerts
  17. ldap_tls_reqcert = never
  18. ldap_force_upper_case_realm = True
  19. ldap_user_object_class = person
  20. ldap_group_object_class = group
  21. ldap_user_gecos = displayName
  22. ldap_user_home_directory = unixHomeDirectory
  23. ldap_default_bind_dn = ldap-bind@ad.blahblah.com
  24. ldap_default_authtok_type = password
  25. ldap_default_authtok = Not!Brazzers!!
  26. override_shell = /bin/bash
  27.  
  28. [sssd]
  29. services = nss, pam
  30. config_file_version = 2
  31.  
  32. domains = default
  33.  
  34. [nss]
  35. filter_users = root,ldap,named,avahi,haldaemon,dbus,radiusd,news,nscd,vsifax,orca,newrelic,admin,pe-puppet
  36.  
  37. [pam]
  38.  
  39. [sudo]
  40.  
  41. [autofs]
  42.  
  43. [ssh]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement