Amazon Linux 2016.03

Foxpass LDAP installation for Amazon Linux 2016.03

Here's how to set up an Linux integration with LDAP, powered by Foxpass.

First, log into Foxpass and do the following:

  1. Note your Base DN on the dashboard page. Copy/paste it somewhere.
  2. Create an API key named 'sshd' on the API keys page. Copy/paste it somewhere.
  3. Create an LDAP Binder account with the name 'linux' on the LDAP binders page. Copy/paste the generated password! It is only displayed once.
  4. Create an LDAP Group with the name 'foxpass-sudo' on the LDAP groups page. Set it to be a 'posix' group. Add yourself to the group.
  5. Modify /etc/sudoers to un-comment the line starting "#%wheel"

Fully Automated!

Just download and run this script with sudo:

wget https://raw.githubusercontent.com/foxpass/foxpass-setup/master/linux/amzn/2016.03/foxpass_setup.py
sudo python foxpass_setup.py --base-dn <base_dn> --bind-user <bind_user> --bind-pw <bind_pw> --api-key <api_key>

e.g.

sudo python foxpass_setup.py --base-dn dc=example,dc=com --bind-user linux --bind-pw efGHbD3aFq --api-key 5GC3NRI5goRBAGkrlsxzYedg0r8HPAO7

(Pro tip: Run the script on a fresh Amazon Linux image, then create a new base AMI for your company.)

Problems? See our troubleshooting guide here: Foxpass Linux debugging