lmn-client/roles/fvs-sssd/templates/sssd.conf.j2 at 7238875d0c16af5635b320339f9ffc20d2791727 - it-team/lmn-client - Forgejo - FvS Reutlingen: Beyond coding. We Forge.

it-team/lmn-client

Andreas B. Mundt 7238875d0c Further split roles. Mount user home on the clients (sshfs).

The following roles are available:
 fvs-sssd
   Configures LDAP as ID and AUTH provider using sssd.
 fvs-mount
   Provides all private user directories on login with pam_mount.

Machines provided so far are:
  The server providing the home directory: fvs-home.yml
  A standard client: fvs-client.yml

2020-12-18 09:28:26 +01:00

22 lines

326 B

Django/Jinja

Raw Blame History

 [sssd]
 domains = LDAP
 config_file_version = 2
 services = nss, pam
 [nss]
 filter_groups = root
 filter_users = root
 [pam]
 [domain/LDAP]
 id_provider = ldap
 ldap_uri = ldaps://{{ ldap_server }}/
 ldap_search_base = {{ basedn }}
 auth_provider = ldap
 auto_private_groups = true
 cache_credentials = true
 ldap_tls_reqcert = never