- Overview
- Module Description - What the module does and why it is useful
- Usage - Configuration options and additional functionality
- Limitations - OS compatibility, etc.
- Development - Guide for contributing to the module
This modules configures sssd, krb5.conf, nsswitch.conf and /etc/openldap/ldap.conf on a FreeIPA client. On CentOS 5 servers it configures also /etc/ldap.conf as it is required for sudo support. This module has been tested on CentOS 5/6/7 but of course it should work on the corresponding RHEL versions
Generally ipa-client-install is enough to set up a FreeIPA client. However this module is required if you want to keep your config in sync across multiple hosts, plus it adds some extra value like sudo configuration in CentOS 5
Join your host to the ipa domain with ipa-client-install, then add this module
class { 'ipaclient':
realm => 'MYREALM.COM',
ldapservers => ['ldap1.mycompany.com, 'ldap2.mycompany.com'],
}
- /etc/sssd/sssd.conf
- /etc/nsswitch.conf
- /etc/krb5.conf
- /etc/openldap/ldap.conf
- /etc/nss_ldap.conf
This module is compatible with RHEL and CentOS versions 5/6/7
- Fork it
- Create a topic branch
- Improve/fix (with spec tests)
- Push new topic branch
- Submit a PR