Red Hat IPA on RHEL 6 with Active Directory one-way-sync and self signed certificates

In principle, a central Linux / UNIX user authentication should be provided for every user. Basically you will find Microsoft`s Active Directory as single point of truth in customer environments regarding identity management (IdM). Unfortunately a lot of requirements within the Linux / UNIX world are not met by Active Directory like

  • Central sudo definitions
  • Central host-based-access (actually for Red Hat systems only)
  • Central unique user and group ID management

Continue reading “Red Hat IPA on RHEL 6 with Active Directory one-way-sync and self signed certificates”