The System Security Services Daemon (SSSD) is an important tool for system authentication and authorization. In this hands-on lab, we will configure SSSD in order to develop a basic proficiency with SSSD configuration and operation. We will also explore the local SSSD user configuration store.
Successfully complete this lab by achieving the following learning objectives:
- Install SSSD and the necessary tools.
yum install -y sssd sssd-tools.
- Configure SSSD to use the local database and to start UIDs and 2000.
sudo cp /usr/share/doc/sssd-common-<current version>/sssd-example.conf /etc/sssd/sssd.conf && sudo chmod 0600 /etc/sssd/sssd.conf
Add the following configurations to
domains = LOCAL
id_provider = local
auth_provider = local
min_id = 2000
- Create the `jsmith` user, the `sis` group, and configure `jsmith` to have `sis` as a supplemental group in the local SSSD database.
Run the following commands:
sss_useradd jsmith sss_groupadd sis sss_usermod -a sis jsmith
- Verify the user was created but is not located in `/etc/passwd`.
grep jsmith /etc/passwdand verify no lines return.
id jsmithto verify the user exists.