I was wondering if anyone had success in configuring Amazon Linux to authenticate to an LDAP server?
EDIT:
For more information on what I have done:
I disabled anonymous access on my OpenLDAP server, so I am trying to have my openldap client on Amazon Linux connect to the OpenLDAP server with a binddn
to authenticate. But when I check the logs on the OpenLDAP server, the binddn
is empty. I have added my binddn
and bindpw
to /etc/pam_ldap.conf.
Part of my /etc/nsswitch.conf
passwd: files ldap
shadow: files ldap
group: files ldap
my /etc/pam_ldap.conf
base dc=example,dc=com
bindnd uid=test_client,ou=System,dc=example,dc=com
bindpw secret
scope sub
pam password md5
nss_base_passwd ou=System,dc=example,dc=com?one
nss_base_passwd ou=People,dc=example,dc=com?one
nss_base_shadow ou=People,dc=example,dc=com?one
nss_base_shadow ou=System,dc=example,dc=com?one
tls_checkpeer no
uri ldap://ec2-00-00-00-00.compute.amazonaws.com
ssl no
tls_cacertdir /etc/openldap/cacerts
Best Answer
I got it working by configuring
/etc/nslcd.conf
with mybinddn
andbindpw