You are not logged in.

#1 2022-03-08 04:09:53

kevdog
Member
Registered: 2013-01-26
Posts: 102

sssd vs nslcd for authenticating local users

I using LDAP authentication and have read the wiki section on using nscld or sssd as a client for authentication. https://wiki.archlinux.org/title/LDAP_a … figuration

Within the wiki under the nslcd section, there is a statement regarding configuration of PAM:

Tip: If you want to prevent UID clashes with local users on your system, you might want to include minimum_uid=10000 or similar on the end of the pam_ldap.so lines. You will have to make sure the LDAP server returns uidNumber fields that match the restriction.

I don't have see a corresponding rule for SSSD and limiting use for client UID > 10000. Does SSSD not work in the same way as nslcd in terms of authentication?  Could PAM be configured similarly with UID restrictions when using SSSD or does SSSD not work in this manor?

Offline

Board footer

Powered by FluxBB