Line 1: |
Line 1: |
− |
| |
| = FreeBSD = | | = FreeBSD = |
| | | |
Line 27: |
Line 26: |
| ** Install /etc/periodic/hourly/100.renew (chmod +x) | | ** Install /etc/periodic/hourly/100.renew (chmod +x) |
| ** Enable hourly periodics in /etc/crontab | | ** Enable hourly periodics in /etc/crontab |
− | *** 0 * * * * root periodic hourly | + | *** 0 * * * * root periodic hourly |
| * Setup /usr/local/etc/nslcd.conf | | * Setup /usr/local/etc/nslcd.conf |
| * Enable services in rc.conf add the following lines to /etc/rc.conf | | * Enable services in rc.conf add the following lines to /etc/rc.conf |
Line 36: |
Line 35: |
| ** service nscd start | | ** service nscd start |
| ** service nslcd start | | ** service nslcd start |
− | | + | * Update /etc/nsswitch.conf |
− | | + | ** passwd: files [success=return] cache ldap |
| + | ** group: files cache ldap |
| + | * Update pam /etc/pam.d/sshd |
| + | ** Uncomment auth line for krb5 module |
| + | ** Add ldap line for account under login_access.so: account sufficient /usr/local/lib/pam_ldap.so |
| + | * Update /etc/ssh/sshd_config add the following lines: |
| + | ** GSSAPIAuthentication yes |
| + | ** GSSAPICleanupCredentials yes |
| + | * Restart sshd: service sshd restart |
| + | c |
| | | |
| == /etc/periodic/hourly/100.renew == | | == /etc/periodic/hourly/100.renew == |
Line 78: |
Line 86: |
| | | |
| == /usr/local/etc/nslcd.conf == | | == /usr/local/etc/nslcd.conf == |
− | | + | <pre> |
| uid nslcd | | uid nslcd |
| gid nslcd | | gid nslcd |