eole-one-frontend/tmpl/sunstone-ldap_auth.conf

40 lines
1.0 KiB
Plaintext

%if %%getVar('sunstone_auth_modes', None) == 'ldap'
server 1:
# Ldap user able to query, if not set connects as anonymous. For
# Active Directory append the domain name. Example:
# Administrator@my.domain.com
#:user: 'admin'
#:password: 'password'
# Ldap authentication method
# Ldap server
:host: %%adresse_ip_ldap
%if %%getVar('ldap_tls', 'non') == 'oui'
:auth_method: :simple_tls
:port: 636
%else
:auth_method: :simple
:port: 389
%end if
# base hierarchy where to search for users and groups
:base: %%ldap_base_dn
# group the users need to belong to. If not set any user will do
#:group: 'cn=cloud,ou=groups,dc=domain'
# field that holds the user name, if not set 'cn' will be used
:user_field: 'uid'
# for Active Directory use this user_field instead
#:user_field: 'sAMAccountName'
# Default group ID used for users in an AD group not mapped
:mapping_default: 1
# List the order the servers are queried
:order:
- server 1
%end if