Skip to Content

Integrate OpenLdap with CentOS using SSSD


How to integrate OpenLdap with Centos 8 using SSSD?

Run the following commands to install the SSSD packages

yum install sssd sssd-client 

Add ldap_search_base,ldap_default_bind_dn,ldap_default_authtok,ldap_uri to /etc/sssd/sssd.conf

services = nss, pam
config_file_version = 2
domains = default


offline_credentials_expiration = 60

ldap_id_use_start_tls = False
cache_credentials = True
ldap_search_base = dc=ldap,dc=ez,dc=com
id_provider = ldap
auth_provider = ldap
chpass_provider = ldap
access_provider = ldap
ldap_uri = ldap://
ldap_default_bind_dn = cn=admin,dc=ldap,dc=ez,dc=com
ldap_default_authtok = paswword
ldap_search_timeout = 50
ldap_network_timeout = 60
ldap_access_order = filter
ldap_access_filter = (objectClass=posixAccount)

Restart sssd

service sssd restart

Enable autocreate home directory on login by the following command  

authconfig --enablemkhomedir --update

Now run the id / finger command and see whether you are able get LDAP user details 

[[email protected] ~]# finger marc

Login: marc             Name: Marc c

Directory: /home/marc   Shell: /usr/local/bin/ezsh

Last login Wed Jun 13 05:02 (EDT) on pts/1 from

No mail.

No Plan.

[[email protected] ~]# id jake

uid=1001(marc) gid=20001(domain users) groups=1547600513(domain users)