Work in progress. For authentication only (no user database) make sure you have nss_pam_ldapd rpm installed and then run: authconfig --enableldapauth --ldapserver=ldaps://ldap.princeton.edu --disableldaptls --ldapbasedn="o=Princeton University,c=US" --ldaploadcacert=file:///etc/pki/tls/certs/ca-bundle.crt --disablesssdauth --update