932
edits
Changes
m
→Investigation 3: Setup and Configure OpenLdap Client Through SSSD - UNDER CONSTRUCTION: - replacing specific hostname with more general instructions
<li>If you would like to actually log into the client machines as an ldap user, you need to reconfigure the way the system authentication processes your login. To do this, you will use the authselect tool on the client machine.<br />
Note: the ldap user does not have home directory on the client unless you provide it via NFS.</li>
<li>Copy the server's signed certificate onot onto the client:*openssl s_client -connect <hostname or ip address of your ldap.pcallagh.opsserver>:636 -showcerts < /dev/null | openssl x509 -text > /etc/openldap/certs/cacert.crt</li>
<li>Set up the SSSD service to use ldap for authentication.
<ul><li>Start by adding the following settings to /etc/sssd/sssd.conf<br />
