1
00:00:00,000 --> 00:00:11,720
In this video, I want to tell you about SSSD, also known as SSSD.

2
00:00:11,720 --> 00:00:12,960
So what is this doing?

3
00:00:12,960 --> 00:00:18,799
Well, the System Services Security Daemon, or SSSD, is used to authenticate on external

4
00:00:18,799 --> 00:00:20,200
authentication providers.

5
00:00:20,200 --> 00:00:26,120
It's what you use if you want to redirect your Linux authentication to an LDAP server

6
00:00:26,120 --> 00:00:31,600
or an Active Directory server, or even a legacy NIST, which is very old and probably never

7
00:00:31,600 --> 00:00:33,540
to be seen again.

8
00:00:33,540 --> 00:00:39,840
You can configure access to SSSD in etcsssd.conf.

9
00:00:39,840 --> 00:00:41,540
Let's check it out.

10
00:00:41,540 --> 00:00:51,400
So going into etcssd, and there you will find, oh, it's a conf.d nowadays, only drop-in files,

11
00:00:51,400 --> 00:00:52,400
and no configuration.

12
00:00:52,400 --> 00:00:54,480
Oh boy, did that change?

13
00:00:54,480 --> 00:01:02,959
That always happens in Linux, but fortunately, we have find, minus name, sssd.conf.

14
00:01:02,959 --> 00:01:07,680
And I don't want to see any errors, I just want to see results.

15
00:01:07,680 --> 00:01:14,839
So yeah, apparently, this is a usual lib64, sssd.conf, sssd.conf.

16
00:01:14,839 --> 00:01:18,559
And let's do less on it, because it's a usual lib64.

17
00:01:18,559 --> 00:01:22,720
That's not typically the location where you are going to modify.

18
00:01:22,720 --> 00:01:25,000
But I want to have a quick look at it.

19
00:01:25,000 --> 00:01:26,160
And what do we see here?

20
00:01:26,160 --> 00:01:28,599
Well, here we see how it is configured.

21
00:01:28,599 --> 00:01:32,639
And the services is only set to NSS and PAM.

22
00:01:32,639 --> 00:01:34,959
And the domains is shadow-utils.

23
00:01:34,959 --> 00:01:38,440
This is what is taking care of local authentication.

24
00:01:38,440 --> 00:01:44,639
If you are going to connect your system to an Active Directory, and you are using auth-config

25
00:01:44,639 --> 00:01:53,879
to set up your system, you will find the custom sssd.conf is in etc.sssd.sssd.conf.

26
00:01:53,879 --> 00:01:59,400
Right now, we don't have any, and that makes sense, because we are dealing with internal

27
00:01:59,400 --> 00:02:01,879
authentication only.

28
00:02:01,879 --> 00:02:08,080
Do not expect anything too serious about SSSD, but like many things in Linux Plus, you need

29
00:02:08,080 --> 00:02:10,679
to know that it exists and what it is doing.