Amazon Linux 2014.09
Foxpass LDAP installation for Amazon Linux 2014.09
Here's how to set up an Linux integration with LDAP, powered by Foxpass.
First, log into Foxpass and do the following:
- Note your Base DN on the dashboard page. Copy/paste it somewhere.
- Create an API key named 'sshd' on the API keys page. Copy/paste it somewhere.
- Create an LDAP Binder account with the name 'linux' on the LDAP binders page. Copy/paste the generated password! It is only displayed once.
- Create an LDAP Group with the name 'foxpass-sudo' on the LDAP groups page. Set it to be a 'posix' group. Add yourself to the group.
- Modify /etc/sudoers to un-comment the line starting "#%wheel"
Fully Automated!
Just download and run this script with sudo:
wget https://raw.githubusercontent.com/foxpass/foxpass-setup/master/linux/amzn/2014.09/foxpass_setup.py
sudo python27 foxpass_setup.py --base-dn <base_dn> --bind-user <bind_user> --bind-pw <bind_pw> --api-key <api_key>
e.g.
sudo python27 foxpass_setup.py --base-dn dc=example,dc=com --bind-user linux --bind-pw efGHbD3aFq --api-key 5GC3NRI5goRBAGkrlsxzYedg0r8HPAO7
If that doesn't work, you may need to install some pre-reqs.
yum install python27-pip
pip-2.7 install urllib3
(Pro tip: Run the script on a fresh Amazon Linux image, then create a new base AMI for your company.)
Problems? See our troubleshooting guide here: Foxpass Linux debugging
Updated 10 months ago