{"id":842,"date":"2013-12-24T14:59:34","date_gmt":"2013-12-24T13:59:34","guid":{"rendered":"http:\/\/blog.rabahi.net\/?page_id=842"},"modified":"2015-02-19T11:29:36","modified_gmt":"2015-02-19T10:29:36","slug":"kerberos-survival-guide","status":"publish","type":"page","link":"https:\/\/blog.rabahi.net\/?page_id=842","title":{"rendered":"SSH"},"content":{"rendered":"<p>You want to connect to your server by ssh, using ldap authentification.<\/p>\n<div id=\"toc_container\" class=\"no_bullets\"><p class=\"toc_title\">Contents<\/p><ul class=\"toc_list\"><li><a href=\"#Configure_winbind\"><span class=\"toc_number toc_depth_1\">1<\/span> Configure winbind<\/a><ul><li><a href=\"#Installation\"><span class=\"toc_number toc_depth_2\">1.1<\/span> Installation<\/a><\/li><li><a href=\"#Test\"><span class=\"toc_number toc_depth_2\">1.2<\/span> Test<\/a><\/li><\/ul><\/li><li><a href=\"#How_to_create_automatically_home_directory_for_new_users\"><span class=\"toc_number toc_depth_1\">2<\/span> How to create automatically home directory for new users?<\/a><ul><li><a href=\"#Troubleshooting\"><span class=\"toc_number toc_depth_2\">2.1<\/span> Troubleshooting<\/a><\/li><\/ul><\/li><\/ul><\/div>\n<h1><span id=\"Configure_winbind\">Configure winbind<\/span><\/h1>\n<h2><span id=\"Installation\">Installation<\/span><\/h2>\n<pre lang=\"bash\">\r\n# install packages :\r\nyum -y install authconfig krb5-workstation pam_krb5 samba-common fprintd-pam\r\n\r\n# start on boot:\r\nchkconfig winbind on\r\n\r\n# configure kerberos (this will update the file \/etc\/krb5.conf):\r\nauthconfig --enablekrb5 --krb5kdc=MYLDAPSERVERIP --krb5realm=LDAP.EXAMPLE.COM --update\r\n\r\n# start service:\r\nservice winbind start\r\n\r\n# add ldap user:\r\nuser add myldapuser\r\n<\/pre>\n<h2><span id=\"Test\">Test<\/span><\/h2>\n<pre lang=\"bash\">\r\nkinit myldapuser\r\n<\/pre>\n<h1><span id=\"How_to_create_automatically_home_directory_for_new_users\">How to create automatically home directory for new users?<\/span><\/h1>\n<pre lang=\"bash\">\r\n# install package:\r\nyum -y install oddjob-mkhomedir\r\n\r\n# start on boot:\r\nchkconfig oddjobd on\r\n\r\n# configure kerberos:\r\nauthconfig --enablemkhomedir --winbindtemplateshell=\/sbin\/nologin --update\r\n\r\n# start service:\r\nservice oddjobd start\r\n<\/pre>\n<h2><span id=\"Troubleshooting\">Troubleshooting<\/span><\/h2>\n<p>The service oddjobd does not want to start?<\/p>\n<pre lang=\"bash\">\r\n\/usr\/sbin\/oddjobd:\r\nError connecting to D-Bus!\r\n<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>You want to connect to your server by ssh, using ldap authentification. Contents1 Configure winbind1.1 Installation1.2 Test2 How to create automatically home directory for new users?2.1 Troubleshooting Configure winbind Installation # install packages : yum -y install authconfig krb5-workstation pam_krb5 samba-common fprintd-pam # start on boot: chkconfig winbind on # configure kerberos (this will update [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":1271,"menu_order":0,"comment_status":"closed","ping_status":"open","template":"","meta":{"footnotes":""},"class_list":["post-842","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/blog.rabahi.net\/index.php?rest_route=\/wp\/v2\/pages\/842","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.rabahi.net\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/blog.rabahi.net\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/blog.rabahi.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.rabahi.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=842"}],"version-history":[{"count":3,"href":"https:\/\/blog.rabahi.net\/index.php?rest_route=\/wp\/v2\/pages\/842\/revisions"}],"predecessor-version":[{"id":1273,"href":"https:\/\/blog.rabahi.net\/index.php?rest_route=\/wp\/v2\/pages\/842\/revisions\/1273"}],"up":[{"embeddable":true,"href":"https:\/\/blog.rabahi.net\/index.php?rest_route=\/wp\/v2\/pages\/1271"}],"wp:attachment":[{"href":"https:\/\/blog.rabahi.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=842"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}