sysadmin:legacy:authentication_on_debian_wheezy
Authentication on Debian Wheezy
Packages to Install
- libpam-krb5
- libnss-ldap
- sudo-ldap
- autofs-ldap
- libpam-cracklib
- wcanadian-huge
Config Files
Configuration files for the previous packages are currently available in a GIT repository in sysadmin on Snape. Download and replace all client files on the machine.
Symbolic Links
- The following symbolic links must be created.
- libnss-ldap.conf → ldap.conf
- sudo-ldap.conf → ldap.conf
Edits
- /etc/default/nfs-common.conf must be edited to include the lines “gssd=yes, idmapd=yes, statd=no”
- sudo-ldap.conf must be edited to add the ldap servers with “uri ldap://fluffy.socs.uoguelph.ca/ ldap://norberta.socs.uoguelph.ca/
Keytab
A keytab must be created for any new servers to use kerberos.
sysadmin/legacy/authentication_on_debian_wheezy.txt · Last modified: 2015/01/27 20:18 by 127.0.0.1