Debian enable ldap users systemwide

From Skytech
Jump to navigation Jump to search

Install ldap

apt-get install libnss-ldap

Configure ldap access

Configure /etc/libnss-ldap.conf | /etc/pam_ldap.conf to reflect to correct values to at least:

base dc=skarta,dc=net
uri ldap://ldap.skarta.net/

Change /etc/nsswitch.conf from:

[ ... ]
passwd:         compat
group:          compat
shadow:         compat

hosts:          files dns
[ ... ]

to

[ ... ]
passwd:         compat ldap
group:          compat ldap
shadow:         compat ldap

hosts:          files dns ldap
[ ... ]

Restart nscd

/etc/init.d/nscd restart

Test LDAP

getent passwd

Should show all your ldap users.

Automatically create homedirs on login from skel

Include the line below in: /etc/pam.d/common-session

session     required      pam_mkhomedir.so skel=/etc/skel umask=0022