Disable LDAP authentication on host OS

Disable LDAP authentication on host OS

This section describes how to disable LDAP authentication on a host operating system.

To disable LDAP authentication:

  1. Open your Git project repository with the Reclass model on the cluster level.

  2. In cluster/<cluster_name>/infra/auth/ldap.yml, disable LDAP:

    ldap:
      enabled: false
    
  3. Enforce the linux.system update:

    salt '<target_node>*' state.sls linux.system
    
  4. Clean up nodes:

    salt '<target_node>*' cmd.run 'export DEBIAN_FRONTEND=noninteractive; apt purge -y libnss-ldapd libpam-ldapd; sed -i "s/ ldap//g" /etc/nsswitch.conf'