Skip to content

Instantly share code, notes, and snippets.

@mazgi

mazgi/console.log.md

Last active March 18, 2024 17:18
Show Gist options
  • Save mazgi/3dbfe99fb2b3e8d1e50b to your computer and use it in GitHub Desktop.
Save mazgi/3dbfe99fb2b3e8d1e50b to your computer and use it in GitHub Desktop.
Download ZIP
LDAP Auth for SSSD, SSH, SUDO
Raw
console.log.md

Packages

# emerge -pvq openldap openssh sssd sudo
[ebuild   R   ] net-nds/openldap-2.4.38-r2  USE="berkdb crypt gnutls ipv6 minimal sasl ssl syslog tcpd -cxx -debug -experimental -icu -iodbc -kerberos -odbc -overlays -perl -samba (-selinux) -slp -smbkrb5passwd" ABI_X86="(64) -32 (-x32)" 
[ebuild   R   ] net-misc/openssh-6.9_p1-r2  USE="hpn pam pie ssl -X -X509 -bindist -debug -kerberos -ldap -ldns -libedit -sctp (-selinux) -skey -ssh1 -static" 
[ebuild   R   ] sys-auth/sssd-1.12.1  USE="locator manpages nls -acl -augeas -autofs -netlink -nfsv4 -python (-selinux) -ssh -sudo {-test}" PYTHON_TARGETS="python2_7" 
[ebuild   R   ] app-admin/sudo-1.8.12  USE="ldap nls pam sendmail -offensive (-selinux) -skey"
@saqib-ali
Copy link

Any recommendations for a GUI to manager Sudoers rules in LDAP or AD?

@auth-day
Copy link

@saqib-ali
Red Hat Identity Management
or free version FreeIPA

@KroniK907
Copy link

KroniK907 commented May 4, 2017
edited
Loading

FusionDirectory is a great tool for managing an openLDAP system in general. It includes a plugin for managing Sudo.

@hdkiller
Copy link

there is a typo:

tls_reqcert naver

@mazgi
Copy link
Author

mazgi commented May 21, 2020

tls_reqcert naver

thanks, I've fixed it

@pratikbin
Copy link

pratikbin commented Sep 20, 2021
edited
Loading

why LDAP client config if we are already configuring sssd ? @mazgi

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment