1.交互式配置:
#authconfig-tui
2.命令行配置:
authconfig --enablemkhomedir --disableldaptls --enableldap --enableldapauth --ldapserver=ldap://192.168.18.150,ldap://10.84.126.150,ldap://192.168.200.10 --ldapbasedn="ou=Common Linux servers,dc=synnex,dc=org" --update
配置好后更改/etc/pam.d/system-auth 文件,使大于0的ID 的账号都使用ldap
vi /etc/pam.d/system-auth
# User changes will be destroyed the next time authconfig is run.
auth required pam_env.so
auth sufficient pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >= 0 quiet
auth sufficient pam_ldap.so use_first_pass
auth required pam_deny.so
阅读(4677) | 评论(0) | 转发(0) |