Linux user authentication with Microsoft LDAP

Question

I'm trying to do following things:

Login to CentOS over ssh: authentication needs to happen with Microsoft Ldap
On successful login create a home directory for user in /home if directory exists take him to his home directory
Put quota on /home/user directory of 5 GB

Can someone please show me a link for Centos/redhat to authorize users with Microsoft Ldap?

I have already tried: setup command from root -> "Authentication configuration" -> "[] User Information -> Use Ldap" -> Authentication -> [] Use Ldap Authentication" -> []/[*] Use TLS -> Server: ldap://corporate.company.com -> Base DN: dc=corporate,dc=company,dc=com" This does not authentication users with Microsoft LDAP

score 2 · Accepted Answer · edited Apr 13 '17 at 12:14

2

The "authenticate linux user against AD" part was extensively covered here.
For part 2 of your question you will probably need to put a little script into your /etc/bash.bashrc file (if your users use bash, otherwise you'll need to find out which file is run for that user's particular shell). Same goes for part 3 of your question.

edited Apr 13 '17 at 12:14

Community

1

answered Aug 16 '10 at 23:21

wolfgangsz

8,767
3
29
34

score 1 · Answer 2 · answered Aug 16 '10 at 21:11

You have to manually edit your ldap.conf file. MSFT AD requires that a user be authenticated to even lookup a user account in AD. Create a user account in AD that's just for doing LDAP lookups.

binddn cn=ldap_user,cn=Users,dc=echostar,dc=com bindpwd secretbinddn cn=ldap_user,cn=Users,dc=company,dc=com bindpwd password_gones_here

score 0 · Answer 3 · answered Mar 11 '11 at 16:04

0

For part 2, you can use pam_mkhomedir to automatically create a user's home-directory if it doesn't exist.

answered Mar 11 '11 at 16:04

nickgrim

4,336
1
17
27

Linux user authentication with Microsoft LDAP

3 Answers3