[sssd]
config_file_version = 2
services = nss, pam
domains = actcur.com

[domain/actcur.com]
debug_level = 6
cache_credentials = true

id_provider = ldap
auth_provider = ldap

ldap_uri = ldaps://ldap.actcur.com:636
ldap_search_base = dc=actcur,dc=com

ldap_id_use_start_tls = true
ldap_tls_reqcert = demand
ldap_tls_cacert = /etc/openldap/certs/chain.pem

chpass_provider = ldap
ldap_chpass_uri = ldaps://ldap.actcur.com:636
entry_cache_timeout = 600
ldap_network_timeout = 2
ldap_group_member = uniquemember