How to configure RHEL 7 using LDAP as a client for authentication

Latest response

Just throwing this out there to see what sticks. It seems that from RHEL 6.3 - 6.6. LDAP client auth config worked fine. With the release of RHEL7, it seems that things have changed for using PAM/LDAP as an authentication client. Searching for this info high and low has returned pretty much nothing. Is there anybody out here that is configuring REHL 7 using LDAP client as an authentication method?

je
Log in to join the conversation

Responses

James Nauer's picture Expert 823 points
25 November 2014 7:24 PM

Are you using LDAP directly, or via SSSD? In my RHEL 6 environment, I switched to using LDAP via SSSD, and my RHEL 7 test systems have worked perfectly with the exact some config files as RHEL6 (sssd.conf, pam.d/system-auth, nsswitch.conf, etc.).

Getting SSSD working in the first place was not a pleasant experience...but that was something like 3 years ago, and I haven't looked back since.

vi Newbie 5 points
27 February 2015 3:08 AM

Hi I am new in ldap and I think my OpenLdap server is working fine but I have been unable to setup the clients, could you please share some tips

Thanks

je Community Member 89 points
25 November 2014 8:37 PM

Thanks for the response James. In RHEL 6.x I'm doing the same as you, i.e. LDAP via SSSD. Maybe I'm missing a tweak in one of the config files, and there are several config files as you are probably well aware. I also had some heartburn with SSSD the first time, but managed to get it right.

I'm also using the pam.d/password-auth calling for the use of an internal file that lives in /lib64/security/XXXXX.so in the 'account section' of both the password-auth and the system-auth. It does add another layer of unpleasant complexity, but it also has worked great. You have given me a couple of ideas for things to check.

Again, I appreciate your response. I didn't think I could be the only one trying to use the same authentication method in both RHEL 6.x and 7.x. :-)

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.