Lab
A Cloud Guru

Configuring SSSD

The System Security Services Daemon (SSSD) is an important tool for system authentication and authorization. In this hands-on lab, we will configure SSSD in order to develop a basic proficiency with SSSD configuration and operation. We will also explore the local SSSD user configuration store.

Try for free Contact sales

Path Info

Level

Advanced

Duration

1h 0m

Published

Nov 05, 2018

Challenge

Install SSSD and the necessary tools.

Run yum install -y sssd sssd-tools.
Challenge

Configure SSSD to use the local database and to start UIDs and 2000.
- Run sudo cp /usr/share/doc/sssd-common-<current version>/sssd-example.conf /etc/sssd/sssd.conf && sudo chmod 0600 /etc/sssd/sssd.conf
- Add the following configurations to /etc/sssd/sssd.conf: domains = LOCAL [domain/LOCAL] id_provider = local auth_provider = local min_id = 2000
Challenge

Create the `jsmith` user, the `sis` group, and configure `jsmith` to have `sis` as a supplemental group in the local SSSD database.
Run the following commands:
```
sss_useradd jsmith 
sss_groupadd sis 
sss_usermod -a sis jsmith 
```
Challenge

Verify the user was created but is not located in `/etc/passwd`.
- Run grep jsmith /etc/passwd and verify no lines return.
- Run id jsmith to verify the user exists.

Author

A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.