What about tls settings ? Does it pick them up from ldap.conf or do I have to copy them too 

Cyril Scetbon

On Mar 13, 2016, at 5:11 PM, Jakub Hrozek <jhrozek@redhat.com> wrote:

On Sun, Mar 13, 2016 at 05:00:45PM -0400, Cyril Scetbon wrote:
Do you mean that if I use both of them I can't use only one ldap configuration (the one used by pam_ldap) ? Today it's exactly what I have, twice the ldap configuration
I thought it would be feasible to use pam_ldap for the ldap access and sssd only to cache the password.

Even though sssd reads ldap.conf for quite a few LDAP provider defaults,
you might need to provide at least the DNS discovery domain and the
id_provider type. The servers and the base DNs should be discovered
sssd-users mailing list