2016-01-04 20:05:08 +01:00
|
|
|
# /etc/nslcd.conf
|
|
|
|
# nslcd configuration file. See nslcd.conf(5)
|
|
|
|
# for details.
|
|
|
|
|
|
|
|
# The user and group nslcd should run as.
|
|
|
|
uid nslcd
|
|
|
|
gid nslcd
|
|
|
|
|
|
|
|
# The location at which the LDAP server(s) should be reachable.
|
2016-01-25 18:47:51 +01:00
|
|
|
uri {{ ldap_uri }}
|
2016-01-04 20:05:08 +01:00
|
|
|
|
|
|
|
# The search base that will be used for all queries.
|
2016-01-25 18:47:51 +01:00
|
|
|
base {{ ldap_base }}
|
2016-01-04 20:05:08 +01:00
|
|
|
|
|
|
|
# The LDAP protocol version to use.
|
|
|
|
#ldap_version 3
|
|
|
|
|
|
|
|
# The DN to bind with for normal lookups.
|
2016-01-25 18:47:51 +01:00
|
|
|
binddn {{ ldap_binddn }}
|
|
|
|
bindpw {{ ldap_bindpw }}
|
2016-01-04 20:05:08 +01:00
|
|
|
|
|
|
|
# The DN used for password modifications by root.
|
|
|
|
#rootpwmoddn cn=admin,dc=example,dc=com
|
|
|
|
|
|
|
|
# The search scope.
|
|
|
|
scope one
|
|
|
|
|
|
|
|
# Customize certain database lookups.
|
|
|
|
base group {{ nslcd_base_group }}
|
|
|
|
base passwd {{ nslcd_base_passwd }}
|
|
|
|
base shadow {{ nslcd_base_shadow }}
|
|
|
|
|
|
|
|
# SSL options
|
|
|
|
tls_reqcert demand
|
2018-09-20 18:30:42 +02:00
|
|
|
tls_cacertfile /etc/ssl/certs/ca-certificates.crt
|
|
|
|
tls_cacertdir /etc/ssl/certs
|