First thing to check is that you have your first DNS server pointer to your IPA server
Next, make sure you have your fqdn in your host filevi /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
192.168.0.5 client.example.com client
Set home directories to be auto createdyum -y install ipa-client pam_mkhomedir.so oddjob-mkhomedirecho "session required pam_mkhomedir.so skel=/etc/skel/ umask=0022" >> /etc/pam.d/system-authauthconfig --enablemkhomedir --update
Tell the nsswitch to look at ldap for sudoersecho sudoers: files ldap >> /etc/nsswitch.conf
If ubuntu add sudo to /etc/sssd/sssd.confservices = nss, pam, ssh, sudo
Add the bind account info
cat << EOF > /etc/sudo-ldap.conf
binddn uid=sudo,cn=sysaccounts,cn=etc,dc=example,dc=com
bindpw
ssl start_tls
tls_cacertfile /etc/ipa/ca.crt
tls_checkpeer yes
uri ldap://ipa.example.com
sudoers_base ou=SUDOers,dc=example,dc=com
EOF
Set the nis lookup domain
cat << EOF >> /etc/rc.d/rc.local
nisdomainname example.com
EOF
Run the install for the client. It should have all the settings predefined for you if you have DNS and hostname setup. ipa-client-install
Enable necessary services to start on bootsystemctl enable oddjobdsystemctl enable sssd