Hi I have a test setup wherein I am trying to authenticate AD users through RHEL 6 and I am using LDAP with SSSD without encryption.
this is my sssd.conf file :
Code:
[sssd]
config_file_version = 2
reconnection_retries = 3
sbus_timeout = 30
services = nss, pam
domains = DOMAIN.COM
[nss]
filter_groups = root
filter_users = root
reconnection_retries = 3
[pam]
reconnection_retries = 3
[domain/DOMAIN.COM]
description = LDAP domain with AD server
enumerate = false
min_id = 1
id_provider = ldap
ldap_uri = ldap://WIN-SERV.DOMAIN.COM/
ldap_schema = rfc2307bis
ldap_user_search_base = dc=DOMAIN,dc=COM
ldap_group_search_base = dc=DOMAIN,dc=COM
ldap_default_bind_dn = CN=ldapsearch,CN=Users,DC=DOMAIN,DC=COM
ldap_default_authtok_type = password
ldap_default_authtok = paswd123
ldap_user_object_class = user
ldap_user_name = sAMAccountName
ldap_user_uid_number = uidNumber
ldap_user_gid_number = gidNumber
ldap_user_home_directory = unixHomeDirectory
ldap_user_shell = loginShell
ldap_user_principal = userPrincipalName
ldap_user_member = msSFU30PosixMemberOf
ldap_group_object_class = group
ldap_group_name = sAMAccountName
ldap_group_gid_number = gidNumber
ldap_group_member = memberUid
ldap_force_upper_case_realm = true
[sudo]
[autofs]
[ssh]
ldapsearches are working fine.
nsswitch.conf is edited as :
Code:
passwd: files sss
shadow: files sss
group: files sss
But
Code:
#getent passwd test_user
just returns without any output.
P.S test_user is created in Active Directory. and I dont have any other users on the RHEL6 box except root.