Learn how to prepare the LDAP server by starting the necessary services and changing some SELinux Booleans. Additionally, start the oddjobd service, which creates user home directories on the fly.
- [Instructor] Now that we have…the open LDAP package installed,…we need to set up the services.…First let's set up a couple of SELinux booleans…to allow the system to use LDAP.…In a terminal, type in…sudo setsebool -P allow_ypbind=1, and hit Enter.…Type in your password to prompt it.…Also type in…sudo setsebool -P authlogin_nsswitch_use_ldap=1,…and hit Enter.…
Now let's start the LDAP service.…Type in clear, then type in…sudo systemctl start slapd.service, and hit Enter.…You may see an SELinux alert pop up.…This won't affect the service running,…but if you want to resolve it,…click on the pop up and follow the instructions.…To verify that the service is running…and listening on Port 389, use the new ss command.…Type in ss -lntu | grep 389, and hit Enter.…
To use the Legacy netstat command,…you may have to install it.…If you have it installed, you can type in,…netstat -antup | grep 389.…To make the slapd service persistent,…let's type in clear, then type in…sudo systemctl enable slapd.service, and hit Enter.…We'll also want to start the odd job service…
- Network Time Services (NTP)
- How NTP works for authentication
- Configuring the chrony server and chrony client
- Setting up an LDAP server and LDAP client
- Creating a Kerberos database
- Configuring Kerberos client authentication
Skill Level Intermediate
Linux: Package Management for CentOSwith Grant McWilliams1h 56m Intermediate
Linux System Engineer: Networking and SSHwith Grant McWilliams1h 52m Intermediate
1. Network Time Services
2. Setting Up an LDAP Server
3. Setting Up an LDAP Client
4. Authentication Using Kerberos
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.