SSSD/Winbind support?

[computergeek125]

Currently, my Linux systems are Active Directory joined using SSSD and realmd (but I would be willing to migrate to using winbind directly if that's easier). My AD controller is Server 2016 with LDAPS enabled.

I'm not super familiar with how the architecture works internally (other than how to install and turn it on), but I believe SSSD is doing its own LDAP lookups against the DC without consulting OpenLDAP.

Is it possible for this project to integrate with something like that? Or do I have to set up OpenLDAP in addition to SSSD to make this work?

[jirutka]

If you have LDAP(S) interface enabled on AD and added attribute sshPublicKey to your schema, then ssh-ldap-pubkey should work with it. SSSD is not relevant here, ssh-ldap-pubkey supports only LDAP interface.