%if %%getVar('sunstone_auth_modes', None) == 'ldap'
server 1:
    # Ldap user able to query, if not set connects as anonymous. For
    # Active Directory append the domain name. Example:
    # Administrator@my.domain.com
    #:user: 'admin'
    #:password: 'password'

    # Ldap authentication method

    # Ldap server
    :host: %%adresse_ip_ldap
%if %%getVar('ldap_tls', 'non') == 'oui'
    :auth_method: :simple_tls
    :port: 636
%else
    :auth_method: :simple
    :port: 389
%end if

    # base hierarchy where to search for users and groups
    :base: %%ldap_base_dn

    # group the users need to belong to. If not set any user will do
    #:group: 'cn=cloud,ou=groups,dc=domain'

    # field that holds the user name, if not set 'cn' will be used
    :user_field: 'uid'

    # for Active Directory use this user_field instead
    #:user_field: 'sAMAccountName'

    # Default group ID used for users in an AD group not mapped
    :mapping_default: 1

# List the order the servers are queried
:order:
    - server 1
%end if