[8658] in athena10
Re: [Debathena] #486: Write a caching NSS module
daemon@ATHENA.MIT.EDU (Debathena Trac)
Sat Nov 12 18:47:07 2011
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
From: "Debathena Trac" <debathena@MIT.EDU>
Cc: debathena@MIT.EDU
To: broder@MIT.EDU, dlaw@MIT.EDU, geofft@MIT.EDU, jdreed@MIT.EDU
Date: Sat, 12 Nov 2011 23:47:01 -0000
Reply-To:
Message-ID: <057.b5ba53116c884b4bc3fbd89fa6d53175@mit.edu>
In-Reply-To: <042.d39a34e8c2624a7c806edaac2472f2d4@mit.edu>
Content-Transfer-Encoding: 8bit
#486: Write a caching NSS module
--------------------+-----------------------------------
Reporter: broder | Owner:
Type: task | Status: new
Priority: normal | Milestone: The Distant Future
Component: -- | Resolution:
Keywords: | Upstream bug:
--------------------+-----------------------------------
Comment (by dlaw):
Works under Lucid:
* Install libnss-sss and dependencies
* Change "hesiod" to "sss" in /etc/nsswitch.conf
* Install /etc/sssd/sssd.conf:
{{{
[sssd]
config_file_version = 2
services = nss
domains = LDAP
[domain/LDAP]
id_provider = ldap
ldap_uri = ldap://ldap-too.mit.edu
ldap_search_base = dc=mit,dc=edu
ldap_tls_cacert = /usr/share/ca-certificates/mit.edu/mitCA.crt
# should be posixGroup, but ldap-too.mit.edu is silly
ldap_group_object_class = group
cache_credentials = true
enumerate = false
min_id=0
max_id=0
}}}
--
Ticket URL: <http://athena10.mit.edu/trac/ticket/486#comment:4>
Debathena <http://debathena.mit.edu>
MIT Debathena Project
