On Wed, Sep 11, 2013 at 4:47 AM, Ondrej Kos <okos(a)redhat.com> wrote:
Hi Dale,
BaseDN shouldn't contain a dot character, could you please post your
sssd.conf file? Sanitized, if needed.
Also, is the version of SSSD you run same on both machines?
I have sssd running on a few RHEL 6 servers, it's just used for user
authentication, works fine. I'm just trying to add autofs support to
it now to NFS home directories.
The LDAP server is SunOne Java LDAP server. I don't remember the
version. It's been running for years. I don't know if I agree that a
period, perhaps it shouldn't have a period, but it seems to allowed by
RFC 2253, as far as I can tell. This configuration has been part of
our infrastructure for a very long time. Might not be the smartest, or
most conventional setup, but it has worked.
So here's what I have in sssd.conf currently, and it doesn't work. It
appears this should work in our current environment. There isn't
anything too special about our setup:
[domain/default]
cache_credentials = True
ldap_search_base =
ou=people,o=nycornell.org
id_provider = ldap
ldap_id_use_start_tls = False
ldap_uri =
ldaps://mds.med.cornell.edu/
ldap_tls_reqcert = never
ldap_default_bind_dn =
cn=adminuser,ou=profile,o=nycornell.org
ldap_default_authtok_type = obfuscated_passwordldap_default_authtok = XXXXXX
access_provider = ldap
ldap_access_filter = (|(host=allunix)(host=redhat))
ldap_autofs_search_base="o=nycornell.org"
ldap_autofs_map_object_class="automountMap"
ldap_autofs_entry_object_class="automount"
ldap_autofs_map_name="automountMapName"
ldap_autofs_entry_key="automountKey"
ldap_autofs_entry_value="automountInformation"
debug_level=0xFFF0
[sssd]
services = nss,pam,autofs
config_file_version = 2
debug_level=0xFFF0
domains = default
--
Dale Harris
rodmur(a)maybe.org
rodmur(a)gmail.com
/.-)