In this tutorial we will show you how to install FreeIPA on CentOS 7 server. For those of you who didn’t know, FreeIPA is an open source identity management system for Linux/Unix environments which provides centralized account management and authentication, like Microsoft Active Directory or LDAP.
FreeIPA has many components, including Kerberos, NTP, DNS, and Dogtag (a certificate system) in order to provide security on your CentOS 7 server. The full FreeIPA package essentially provides Linux systems with the abilities for centralized authentication, authorization and account information by storing data about users, groups, hosts and all the other objects that are needed to manage security for networks.
This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo’ to the commands to get root privileges. I will show you through the step by step install FreeIPA open source identity management system on CentOS 7 server.
Install FreeIPA on CentOS 7
Step 1. First let’s start by ensuring your system is up-to-date.
The first thing that we are going to do is to prepare the CentOS 7 server to run FreeIPA. In order to do this, we are going to set the IP address on the system, In our case the host IP is 192.168.1.2/24:
echo"192.168.1.2 ipa.idroot.local ipa">>/etc/hosts
Next, Install the package dependencies required for our setup with the following commands if they are not already installed:
Then, install FreeIPA using following command:
The setup process for FreeIPA can take a long time to complete depending on the server specifications. Begin the setup process with the following command:
Here is how this configuration will look by running the previous command:
[email@example.com~]# ipa-server-install --setup-dns
After the FreeIPA installation, authenticate to the Kerberos realm to ensure that the administrator is configured correctly:
Next, this we are going to use authconfig to guarantee that the user directories are created and enable sssd:
These commands are used to allow FreeIPA services in the case the the security daemon Firewalld is running on your system:
FreeIPA will be available on HTTP port 80 by default. Open your favorite browser and navigate to https://ipa.idroot.local/ and complete the required the steps to finish the installation.
Congratulation’s! You have successfully installed FreeIPA on CentOS 7. Thanks for using this tutorial for installing FreeIPA open source identity management on CentOS 7 systems. For additional help or useful information, we recommend you to check the official FreeIPA web site.