FreeRadius and Active Directory and SSSD
Alan DeKok
aland at deployingradius.com
Mon May 9 11:52:24 UTC 2022
On May 9, 2022, at 7:31 AM, White, Daniel E. (GSFC-770.0)[AEGIS] via Freeradius-Users <freeradius-users at lists.freeradius.org> wrote:
>
> RHEL 8 server
> Joined to AD domain using sssd for credentials
>
> The file /etc/nsswitch.conf contains:
>
> passwd: sss files systemd
> group: sss files systemd
> netgroup: sss files
> automount: sss files
> services: sss files
>
> shadow: files sss
> hosts: files dns myhostname
>
> aliases: files
> ethers: files
> gshadow: files
> networks: files dns
> protocols: files
> publickey: files
> rpc: files
>
> This guide
> https://wiki.freeradius.org/guide/freeradius-active-directory-integration-howto
> says to append "winbind" to passwd, shadow, group, protocols, services, netgroup, automount
>
> Is this going to break things ?
If you want users to come directly from AD, then you can add winbind. If instead you use sssd for users, and it connects to AD, then just list "sss".
Alan DeKok.
More information about the Freeradius-Users
mailing list