LDAP Authentication Red Hat Enterprise Linux 6 – Update

red hat logoI have gotten a few people asking about the problems they are having with their LDAP configurations on RHEL 6 based on my previous post on this topic. I must say it’s a quite a pain having come from RHEL 5.

To summarise,

1. Take out sssd if you don’t need offline authentication

2. RHEL 6 defaults to TLS for LDAP authentication. Disable this behaviour by changing FORCELEGACY=YES in /etc/sysconfig/authconfig if you really do not want TLS between your client and the LDAP server.

3. nslcd is a neccesary component for LDAP authentication. Install nss_pam_ldapd nss-pam-ldapd and make sure nslcd is running.

Hope this helps anyone who is stuck with this issue.

*Edited – 20110805: Thanks to Frank M for pointing out the typo in the nss-pam-ldapd package.

Author: yibi

YiBi's numb :) YiBi writes about anything. Technology, Gossips, Rubbish YiBi's a half f%#k geek :P

Comments

  1. Thanks for the tips – helped me a bunch!
    Just a little note – on CentOS 6 (so perhaps on RHEL6 as well?), it’s called nss-pam-ldapd (hyphens, not underscores).

    Thank you for your help!

  2. Thanks for this, was going round in circles till I saw your post regarding point 3… now it works :-)

Optimization WordPress Plugins & Solutions by W3 EDGE