Contact US

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

CentOS 6.9, LDAP, Vault, Active Directory

CentOS 6.9, LDAP, Vault, Active Directory

CentOS 6.9, LDAP, Vault, Active Directory

Good Afternoon Folks,

It's been a long time since I posted here, but it's good to be back. I have an issue/goal that I have been trying to resolve/reach for a while, and I cannot seem to find all the right pieces to get me there.

I have some CentOS 6.9 servers which I want to authenticate against an Active Directory domain via LDAP. NOTE: I do NOT want to join these servers to the domain. I merely want to fire off an authentication exchange via LDAP when someone logs into the box. This is to simplify management.

Anyway, the challenge is the Active Directory, of course, does not allow anonymous bind. So, we set up a dedicated, service again to use for binding to Active Directory in order to query it. The problem is, the keepers of the accounts do not want to give us the password or allow the password to be stored in clear text in a conf file.

So here is the question.....

Does anyone know of a way to 1) mask a password during entry into a 2) encrypted storage container (vault?) which can 3) be accessed by the LDAP config when a bind is necessary to authenticate a user? ponder

The basic LDAP configuration stuff is no big deal, but the securing of the password while still allowing it to be used is the rub at this point.

Thanks for your help!

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close