The IPA Helper should be able to automatically configure LDAP. It should use the IPA princ to authenticate to LDAP, rather than requiring a login/password. The basedn is in the ipa config file. It could use the "server" as a fallback to a DNS SRV based query to find the directory server.
NOTE: LDAP info module may need some enhancement to handle KRB authentication?
SSSD might make sense too?
Fields changed
milestone: => 1.1
The LDAP info plugin is quite limited today and only supports RFC 2307 so would have to use the IPA compat plugin.
SSSD would be the way to go but we want to leave it optional. It is there if desired.
resolution: => wontfix status: new => closed
Metadata Update from @rcritten: - Issue set to the milestone: 1.1 - Issue tagged with: ipa, ldap
Login to comment on this ticket.