From the course: Linux System Engineer: Authentication with LDAP and Kerberos
Unlock the full course today
Join today to access over 22,500 courses taught by industry experts or purchase this course individually.
Prepare LDAP server
From the course: Linux System Engineer: Authentication with LDAP and Kerberos
Prepare LDAP server
- [Instructor] Now that we have the open LDAP package installed, we need to set up the services. First let's set up a couple of SELinux booleans to allow the system to use LDAP. In a terminal, type in sudo setsebool -P allow_ypbind=1, and hit Enter. Type in your password to prompt it. Also type in sudo setsebool -P authlogin_nsswitch_use_ldap=1, and hit Enter. Now let's start the LDAP service. Type in clear, then type in sudo systemctl start slapd.service, and hit Enter. You may see an SELinux alert pop up. This won't affect the service running, but if you want to resolve it, click on the pop up and follow the instructions. To verify that the service is running and listening on Port 389, use the new ss command. Type in ss -lntu | grep 389, and hit Enter. To use the Legacy netstat command, you may have to install it. If you have it installed, you can type in, netstat -antup | grep 389. To make the slapd service persistent, let's type in clear, then type in sudo systemctl enable…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.