Using the authconfig command-line tool
To update all of the configuration files and services required for system authentication, you can run the authconfig command-line tool.
As shown in the following example:
authconfig --enableldap --ldapserver=ldap://winserver.tem.test.com:389
--ldapbasedn="dc=tem,dc=test,dc=com" --enablekrb5
--krb5realm TEM.TEST.COM --krb5kdc winserver.tem.test.com:88
--krb5adminserver winserver.tem.test.com:464 --update
where:
- --enableldap
- Specifies to configure to connect the system with the Windows Active Directory domain using LDAP with Kerberos authentication.
- --ldapserver
- Specifies the address of the LDAP server such as
ldap://winserver.tem.test.com
- --ldapbasedn
- Specifies to retrieve the user information using the listed Distinguished
Name (DN), such as
dc=tem,dc=test,dc=com
- --enablekrb5
- Enables the Kerberos password authentication method.
- --krb5realm
- Configures the realm for the Kerberos server, such as
TEM.TEST.COM
. Ensure you specify the realm name in uppercase. - --krb5kdc
- Specifies the Key Distribution Center (KDC) for issuing
Kerberos tickets, such as
winserver.tem.test.com
. - --krb5adminserver
- Specifies the administration servers running
kadmind
, such aswinserver.tem.test.com
. - --update
- Applies all the configuration settings.
For more information about how to use this command, see Configuring Authentication from the Command Line.