[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: getent passwd only catch local user passwd

To: openldap-technical@openldap.org
Subject: Re: getent passwd only catch local user passwd
From: Liam Gretton <liam.gretton@leicester.ac.uk>
Date: Thu, 30 Apr 2015 17:24:11 +0100
In-reply-to: <BN3PR0801MB10927DC9B307CE56107D5581F9D60@BN3PR0801MB1092.namprd08.prod.outlook.com>
Organization: IT Services, University Of Leicester
References: <BN3PR0801MB1092854E576E5E8E857DDF9FF9E80@BN3PR0801MB1092.namprd08.prod.outlook.com> <20150429093910.GF4937@slab.skills-1st.co.uk> <BN3PR0801MB109215F5EB8799F077B00C5EF9D60@BN3PR0801MB1092.namprd08.prod.outlook.com> <20150430115627.GG4937@slab.skills-1st.co.uk> <BN3PR0801MB10927DC9B307CE56107D5581F9D60@BN3PR0801MB1092.namprd08.prod.outlook.com>
User-agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.6.0

On 30/04/2015 17:09, Yingbo Li wrote:
> It looks like binddn and bindpw should be set. It seems that IT LDAP server request for binddn and bindpw for getent operation. In my local test env, ldap server did request binddn and bindpw from ladp client getent operation. It works.
> But Howard Chu said in OpenLDAP, ldap.conf file cannot set binddn and bindpw. Ldapsearch I can use -D  -w to set binddn and bindpw. What else can I do to make getent work?

ldap.conf doesn't come into it. You need to tell sssd how to bind to
your LDAP server.

Use the following three directives in sssd.conf within your
[domain/default] section:

ldap_default_bind_dn = <dn to bind as>
ldap_default_authtok_type = password
ldap_default_authtok = <dn password>

Look at the man page for sssd.conf for more information about these.

-- 
Liam Gretton                                    liam.gretton@le.ac.uk
Systems Specialist                           http://www.le.ac.uk/its/
IT Services                                   Tel: +44 (0)116 2522254
University Of Leicester, University Road
Leicestershire LE1 7RH, United Kingdom

Follow-Ups:
- Re: getent passwd only catch local user passwd
  - From: Howard Chu <hyc@symas.com>

References:
- getent passwd only catch local user passwd
  - From: Yingbo Li <YLi28@ra.rockwell.com>
- Re: getent passwd only catch local user passwd
  - From: Andrew Findlay <andrew.findlay@skills-1st.co.uk>
- RE: getent passwd only catch local user passwd
  - From: Yingbo Li <YLi28@ra.rockwell.com>
- Re: getent passwd only catch local user passwd
  - From: Andrew Findlay <andrew.findlay@skills-1st.co.uk>
- RE: getent passwd only catch local user passwd
  - From: Yingbo Li <YLi28@ra.rockwell.com>

Prev by Date: RE: getent passwd only catch local user passwd
Next by Date: Re: Significance of name forms.
Index(es):
- Chronological
- Thread