基于CentOS6.5进行IPA服务的搭建――客户端配置
2014-05-18 14:56
651 查看
前面介绍了IPA服务端的配置,IPA服务可以为Linux系统提供用户的集中化管理服务。下面我们看一下客户端的具体配置。
操作步骤:
(1)在另外一台主机上安装CentOS6.5操作系统,作为IPA客户端主机
(2)配置客户端网络参数(配置完成后重启系统)
客户端测试:
本文出自 “BlkArt” 博客,请务必保留此出处http://blkart.blog.51cto.com/1142352/1413125
操作步骤:
(1)在另外一台主机上安装CentOS6.5操作系统,作为IPA客户端主机
(2)配置客户端网络参数(配置完成后重启系统)
[root@localhost ~]# vim /etc/sysconfig/network-scripts/ifcfg-eth0 DEVICE=eth0 HWADDR=00:0C:29:F4:B0:3A TYPE=Ethernet UUID=7a646205-4bcd-4c58-a425-e6e0735f9e2e ONBOOT=yes NM_CONTROLLED=yes BOOTPROTO=static IPADDR=192.168.0.200 NETMASK=255.255.255.0 DNS1=192.168.0.100 [root@localhost ~]# vim /etc/sysconfig/network NETWORKING=yes HOSTNAME=client.example.com(3)安装软件包
[root@client ~]# yum -y install ipa-client(4)安装客户端
[root@client ~]# ipa-client-install --mkhomedir -p admin Discovery was successful! Hostname: client.example.com Realm: EXAMPLE.COM DNS Domain: example.com IPA Server: ipa.example.com BaseDN: dc=example,dc=com Continue to configure the system with these values? [no]: yes Synchronizing time with KDC... Password for admin@EXAMPLE.COM: Successfully retrieved CA cert Subject: CN=Certificate Authority,O=EXAMPLE.COM Issuer: CN=Certificate Authority,O=EXAMPLE.COM Valid From: Sat May 17 10:32:32 2014 UTC Valid Until: Wed May 17 10:32:32 2034 UTC Enrolled in IPA realm EXAMPLE.COM Created /etc/ipa/default.conf New SSSD config will be created Configured /etc/sssd/sssd.conf Configured /etc/krb5.conf for IPA realm EXAMPLE.COM trying https://ipa.example.com/ipa/xml Forwarding 'env' to server u'https://ipa.example.com/ipa/xml' Hostname (client.example.com) not found in DNS DNS server record set to: client.example.com -> 192.168.0.200 Adding SSH public key from /etc/ssh/ssh_host_rsa_key.pub Adding SSH public key from /etc/ssh/ssh_host_dsa_key.pub Forwarding 'host_mod' to server u'https://ipa.example.com/ipa/xml' SSSD enabled Configured /etc/openldap/ldap.conf NTP enabled /etc/ssh/ssh_config not found, skipping configuration Configured /etc/ssh/sshd_config Client configuration complete.到此为止,客户端配置完成。
客户端测试:
[root@client ~]# su - user01 [user01@client ~]$ id uid=1682400001(user01) gid=1682400001(user01) groups=1682400001(user01) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 [user01@client ~]$ pwd /home/user01 [user01@client ~]$ su - user02 Password: [user02@client ~]$ id uid=1682400003(user02) gid=1682400003(user02) groups=1682400003(user02) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 [user02@client ~]$ pwd /home/user02
本文出自 “BlkArt” 博客,请务必保留此出处http://blkart.blog.51cto.com/1142352/1413125
相关文章推荐
- 基于CentOS6.5进行IPA服务的搭建――服务端搭建及配置
- centos 6.5环境利用iscsi搭建SAN网络存储服务及服务端target和客户端initiator配置详解
- centos 6.5环境利用iscsi搭建SAN网络存储服务及服务端target和客户端initiator配置详解
- 基于CentOS 6.5操作系统搭建MongoDB服务
- 基于CentOS与VmwareStation10搭建Oracle11G RAC 64集群环境:2.搭建环境-2.10.配置用户NTF服务
- 基于【CentOS-7+ Ambari 2.7.0 + HDP 3.0】搭建HAWQ数据仓库——安装配置NTP服务,保证集群时间保持同步
- centos6.5安装配置LDAP服务[转]
- 在centos 下安装配置基于gitosis 的git 服务
- 总结之:CentOS6.5 DNS服务BIND配置、正反向解析、主从及压力测试(2) 推荐
- .Net平台如何基于wsdl文件搭建虚拟WebService服务器进行跨平台服务调试?
- 3、单机运行环境搭建之 --CentOS-6.5安装配置Tengine
- 总结之:CentOS6.5 DNS服务BIND配置、正反向解析、主从及压力测试(4)
- 基于Windows Azure 搭建基于SharePoint 2010 Intranet、Extranet、Internet (4): 配置传出邮件服务: 使用 outlook.com 发送邮件通知
- 1、单机运行环境搭建之 --CentOS-6.5安装配置JDK-7
- 3、单机运行环境搭建之 --CentOS-6.5安装配置Tengine