CentOS 6通过ldap集成AD域账号(nslcd方式):
yum install nss-pam-ldapd(rpm -qa nss-pam-ldapd,rpm -ql nss-pam-ldapd)
vi /etc/nsswitch.conf
passwd: files ldap
group: files ldap
shadow: files ldap
:wq
vi /etc/nslcd.conf
binddn cn=aa,cn=users,dc=ming,dc=com (aa为普通AD账号,在Users组里)
bindpw ** (aa的密码)
下面部分默认为注释掉的,去掉注释即可
#Mappings for Active Directory
#pagesize 1000
#referrals off
filter passwd (&(objectClass=user)(!(objectClass=computer))(uidNumber=)(unixHomeDirectory=))
map passwd uid sAMAccountName
map passwd homeDirectory unixHomeDirectory
map passwd gecos displayName
filter shadow (&(objectClass=user)(!(objectClass=computer))(uidNumber=)(unixHomeDirectory=))
map shadow uid sAMAccountName
map shadow shadowLastChange pwdLastSet
filter group (objectClass=group)
map group uniqueMember member
uid nslcd
gid ldap
uri ldap://10.0.0.3/
base dc=ming,dc=com
ssl no
tls-cacertdir /etc/openldap/cacerts
:wq
/etc/init.d/nslcd restart
vi /etc/pam.d/system-auth
session required pam_mkhomedir.so skel=/etc/skel umask=0022
:wq
getent passwd | grep zhi.yang
su - zhi.yang
远程ssh登陆会不行,还在查找原因
原文地址:https://www.jb51.cc/centos/374541.html
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。
