mirror of
https://github.com/kakwa/ldapcherry
synced 2024-11-25 18:54:29 +01:00
adding parameters for group attributes + comments
This commit is contained in:
parent
4a302750c0
commit
24d415280a
@ -66,22 +66,43 @@ roles.file = '/etc/ldapcherry/roles.yml'
|
|||||||
|
|
||||||
[backends]
|
[backends]
|
||||||
|
|
||||||
|
# name of the module
|
||||||
ldap.module = 'ldapcherry.backend.backendLdap'
|
ldap.module = 'ldapcherry.backend.backendLdap'
|
||||||
ldap.groupdn = 'ou=groups,dc=example,dc=org'
|
|
||||||
ldap.userdn = 'ou=people,dc=example,dc=org'
|
# uri of the ldap directory
|
||||||
ldap.binddn = 'cn=ldapcherry,dc=example,dc=org'
|
|
||||||
ldap.password = 'password'
|
|
||||||
ldap.uri = 'ldaps://ldap.ldapcherry.org'
|
ldap.uri = 'ldaps://ldap.ldapcherry.org'
|
||||||
|
# ca to use for ssl/tls connexion
|
||||||
ldap.ca = '/etc/dnscherry/TEST-cacert.pem'
|
ldap.ca = '/etc/dnscherry/TEST-cacert.pem'
|
||||||
|
# use start tls
|
||||||
ldap.starttls = 'off'
|
ldap.starttls = 'off'
|
||||||
|
# check server certificate (for tls)
|
||||||
ldap.checkcert = 'off'
|
ldap.checkcert = 'off'
|
||||||
ldap.user_filter_tmpl = '(uid=%(username)s)'
|
# bind dn to the ldap
|
||||||
ldap.group_filter_tmpl = '(member=%(username)s)'
|
ldap.binddn = 'cn=ldapcherry,dc=example,dc=org'
|
||||||
ldap.search_filter_tmpl = '(|(uid=%(searchstring)s*)(sn=%(searchstring)s*))'
|
# password of the bind dn
|
||||||
ldap.objectclasses = 'top, person, organizationalPerson, user'
|
ldap.password = 'password'
|
||||||
ldap.dn_user_attr = 'uid'
|
# timeout of ldap connexion (in second)
|
||||||
ldap.timeout = 1
|
ldap.timeout = 1
|
||||||
|
|
||||||
|
# groups dn
|
||||||
|
ldap.groupdn = 'ou=groups,dc=example,dc=org'
|
||||||
|
# users dn
|
||||||
|
ldap.userdn = 'ou=people,dc=example,dc=org'
|
||||||
|
# ldapsearch filter to get a user
|
||||||
|
ldap.user_filter_tmpl = '(uid=%(username)s)'
|
||||||
|
# ldapsearch filter to get groups of a user
|
||||||
|
ldap.group_filter_tmpl = '(member=%(username)s)'
|
||||||
|
# filter to search users
|
||||||
|
ldap.search_filter_tmpl = '(|(uid=%(searchstring)s*)(sn=%(searchstring)s*))'
|
||||||
|
|
||||||
|
# ldap group attributes and how to fill them
|
||||||
|
ldap.group_attr.uniqMember = "%(dn)s"
|
||||||
|
ldap.group_attr.memberUid = "%(uid)s"
|
||||||
|
# object classes of a user entry
|
||||||
|
ldap.objectclasses = 'top, person, organizationalPerson, user'
|
||||||
|
# dn entry attribute for an ldap user
|
||||||
|
ldap.dn_user_attr = 'uid'
|
||||||
|
|
||||||
|
|
||||||
ad.module = 'ldapcherry.backend.backendSamba4'
|
ad.module = 'ldapcherry.backend.backendSamba4'
|
||||||
ad.auth = 'Administrator'
|
ad.auth = 'Administrator'
|
||||||
|
Loading…
Reference in New Issue
Block a user