sssd and ldap config
Michael Cronenworth
mike at cchtml.com
Wed Jun 9 19:47:40 UTC 2010
Stephen Gallagher wrote:
> try ldap_tls_reqcert = never
>
> (or better yet, get a CA cert)
Hm. 389 doesn't really care, so I've been lazy and gone without it.
> In this case, you probably want to set min_id=500.
>
> Also, as previously stated, primary GID can also cause this (e.g. a user
> with UID=1500, primary GID=17 will still be filtered out if min_id=500)
It's working now. Thanks.
More information about the users
mailing list