[CentOS] CentOS6 LDAP Authentication.

Sat Oct 27 18:04:06 UTC 2012
Gordon Messmer <yinyang at eburg.com>

On 10/26/2012 01:08 PM, Ezequiel Larrarte wrote:
> I tried all
> /etc/nslcd.conf
> /etc/pam_ldap.conf
> /etc/openldap/ldap.conf

Don't use nss-pam-ldapd and pam_ldap.  Remove the packages entirely and 
install sssd.  You'll still use authconfig to configure LDAP 
integration, but you'll get a stack that's better maintained and 
documented.  See "man sssd-ldap" for ldap_tls_reqcert.  Or, better, 
install the CA that signed your LDAP cert and refer to that with 
ldap_tls_cacert or ldap_tls_cacertdir.