Adoptable Cookbooks List

Looking for a cookbook to adopt? You can now see a list of cookbooks available for adoption!
List of Adoptable Cookbooks

Supermarket Belongs to the Community

Supermarket belongs to the community. While Chef has the responsibility to keep it running and be stewards of its functionality, what it does and how it works is driven by the community. The chef/supermarket repository will continue to be where development of the Supermarket application takes place. Come be part of shaping the direction of Supermarket by opening issues and pull requests or by joining us on the Chef Mailing List.

Select Badges

Select Supported Platforms

Select Status

RSS

sssd_ad (8) Versions 0.7.0

Installs/Configures SSSD for AD integration

Policyfile
Berkshelf
Knife
cookbook 'sssd_ad', '= 0.7.0', :supermarket
cookbook 'sssd_ad', '= 0.7.0'
knife supermarket install sssd_ad
knife supermarket download sssd_ad
README
Dependencies
Changelog
Quality 57%

sssd_ad

This cookbook installs SSSD on a Ubuntu system and configures it for Active Directory authentication. It loosely follows the directions found here: https://help.ubuntu.com/lts/serverguide/sssd-ad.html.

IMPORTANT: This cookbook assumes the system's FQDN (e.g. 'server.example.contoso.com') is in /etc/hosts. Joining the domain may fail if this is not the case. See the above link for details.

Platforms

Tested on Ubuntu 14.04.

Attributes

  • ['sssd_ad']['access_filter'] - optional ad_access_filter for the joined domain, e.g. "(&(sAMAccountName=jo*)(unixHomeDirectory=*))"
  • ['sssd_ad']['nss_filter_users'] - optional comma separated string of users to be excluded from the AD search; see sssd.conf man page
  • ['sssd_ad']['cache_credentials'] - boolean to enable SSSD credential caching; defaults to false
  • ['sssd_ad']['dc'] - the FQDN of the primary domain controller
  • ['sssd_ad']['use_ntp'] - configure NTP to sync with the primary domain controller; defaults to true
  • ['sssd_ad']['join_domain'] - join the system to the domain (requires credentials in a chef-vault item); defaults to false
  • ['sssd_ad']['vault_name'] - name of the data bag containing domain credentials
  • ['sssd_ad']['vault_item'] - name of the chef-vault item containing domain credentials

Usage

Add the sssd_ad::default recipe to the node's run list, and set the ['samba']['workgroup'], ['samba']['options']['realm'], and ['sssd_ad']['dc'] attributes. If the system should be joined to the domain automatically, set the join_domain attribute to true and create a chef-vault item containing AD credentials that have appropriate permissions.

Dependent cookbooks

chef-vault ~> 1.0
samba ~> 0.12

Contingent cookbooks

There are no cookbooks that are contingent upon this one.

sssd_ad Cookbook CHANGELOG

This file is used to list changes made in each version of the sssd_ad cookbook.

v0.7.0 (2016-06-22)

  • Added Ubuntu 16.04 support.

v0.6.0 (2016-02-22)

  • Add attribute to set the nss filter_users option.

Collaborator Number Metric
            

0.7.0 passed this metric

Contributing File Metric
            

0.7.0 failed this metric

Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a CONTRIBUTING.md file

Foodcritic Metric
            

0.7.0 passed this metric

License Metric
            

0.7.0 failed this metric

sssd_ad does not have a valid open source license.
Acceptable licenses include Apache-2.0, apachev2, Apache 2.0, MIT, mit, GPL-2.0, gplv2, GNU Public License 2.0, GPL-3.0, gplv3, GNU Public License 3.0.

No Binaries Metric
            

0.7.0 passed this metric

Testing File Metric
            

0.7.0 failed this metric

Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file

Version Tag Metric
            

0.7.0 passed this metric