**This is an old revision of the document!**
FreeIPA
FreeIPA is an Identity Policy and Authentication solution. We are currently using this for our internal management networks.
Server
Basically follow this. Also DNS is suuuuuuupppppeeeerrrrr important.
Client
On RHEL based ones, install freeipa-client
. Super easy. On debian, aka master race, it's TBD.
LDAP Integrations
Include the specific settings (search stuff, bind user, etc). Link to each service's page on how to finalize the configuration.
General
- Bind User: uid=bind,cn=users,cn=accounts,dc=ubnetdef,dc=net
- Search Base DN: cn=users,cn=accounts,dc=ubnetdef,dc=net
- User Search Pattern: (&(objectClass=inetorgperson)(uid=#USERNAME#))
- Group Search Base DN: cn=groups,cn=accounts,dc=ubnetdef,dc=net
- Group Search Pattern: (&(objectClass=groupofnames)(cn=#GROUPNAME#))