Switch to ca-cert store for auth ca

v2-neotame-mannitol
Zachary Seguin 3 years ago
parent 0780c5a713
commit 095f8d9c7a
  1. 4
      roles/csc-auth/files/ldap.conf
  2. 2
      roles/csc-auth/files/sssd.conf

@ -11,6 +11,6 @@ URI ldap://ldap1.csclub.uwaterloo.ca ldap://ldap2.csclub.uwaterloo.ca
SIZELIMIT 0
TLS_CACERT /etc/ssl/certs/GlobalSign_Intermediate_Root_SHA256_G2.pem
TLS_CACERTFILE /etc/ssl/certs/GlobalSign_Intermediate_Root_SHA256_G2.pem
TLS_CACERT /etc/ssl/certs/ca-certificates.crt
TLS_CACERTFILE /etc/ssl/certs/ca-certificates.crt

@ -13,7 +13,7 @@ sudo_provider = ldap
entry_cache_timeout = 600
ldap_uri = ldaps://ldap1.csclub.uwaterloo.ca,ldaps://ldap2.csclub.uwaterloo.ca
ldap_tls_cacert = /etc/ssl/certs/GlobalSign_Intermediate_Root_SHA256_G2.pem
ldap_tls_cacert = /etc/ssl/certs/ca-certificates.crt
ldap_tls_reqcert = demand
ldap_search_base = dc=csclub,dc=uwaterloo,dc=ca
ldap_schema = rfc2307bis

Loading…
Cancel
Save