# /etc/nslcd.conf
# nslcd configuration file. See nslcd.conf(5)
# for details.

# The user and group nslcd should run as.
uid nslcd
gid nslcd

# The location at which the LDAP server(s) should be reachable.
uri {{ ldap_uri }}

# The search base that will be used for all queries.
base {{ ldap_base }}

# The LDAP protocol version to use.
#ldap_version 3

# The DN to bind with for normal lookups.
binddn {{ ldap_binddn }}
bindpw {{ ldap_bindpw }}

# The DN used for password modifications by root.
#rootpwmoddn cn=admin,dc=example,dc=com

# The search scope.
scope one

# Customize certain database lookups.
base group  {{ nslcd_base_group }}
base passwd {{ nslcd_base_passwd }}
base shadow {{ nslcd_base_shadow }}

# SSL options
tls_reqcert demand
tls_cacertfile /etc/ssl/certs/ca-certificates.crt
tls_cacertdir /etc/ssl/certs