2014-10-07 15:19:41 +02:00
|
|
|
%if %%getVar('sunstone_auth_modes', None) == 'ldap'
|
2014-09-30 09:59:25 +02:00
|
|
|
server 1:
|
|
|
|
# Ldap user able to query, if not set connects as anonymous. For
|
|
|
|
# Active Directory append the domain name. Example:
|
|
|
|
# Administrator@my.domain.com
|
|
|
|
#:user: 'admin'
|
|
|
|
#:password: 'password'
|
|
|
|
|
|
|
|
# Ldap authentication method
|
|
|
|
|
|
|
|
# Ldap server
|
|
|
|
:host: %%adresse_ip_ldap
|
|
|
|
%if %%getVar('ldap_tls', 'non') == 'oui'
|
|
|
|
:auth_method: :simple_tls
|
|
|
|
:port: 636
|
|
|
|
%else
|
|
|
|
:auth_method: :simple
|
|
|
|
:port: 389
|
|
|
|
%end if
|
|
|
|
|
|
|
|
# base hierarchy where to search for users and groups
|
|
|
|
:base: %%ldap_base_dn
|
|
|
|
|
|
|
|
# group the users need to belong to. If not set any user will do
|
|
|
|
#:group: 'cn=cloud,ou=groups,dc=domain'
|
|
|
|
|
|
|
|
# field that holds the user name, if not set 'cn' will be used
|
|
|
|
:user_field: 'uid'
|
|
|
|
|
|
|
|
# for Active Directory use this user_field instead
|
|
|
|
#:user_field: 'sAMAccountName'
|
|
|
|
|
2016-11-14 13:30:06 +01:00
|
|
|
# Default group ID used for users in an AD group not mapped
|
|
|
|
:mapping_default: 1
|
|
|
|
|
2014-09-30 09:59:25 +02:00
|
|
|
# List the order the servers are queried
|
|
|
|
:order:
|
|
|
|
- server 1
|
|
|
|
%end if
|