Subversion Repositories ALCASAR

Rev

Rev 2490 | Details | Compare with Previous | Last modification | View Log

Rev Author Line No. Line
2465 richard 1
# -*- text -*-
2
#  Lightweight Directory Access Protocol (LDAP) module for ALCASAR
2705 tom.houday 3
 
2465 richard 4
ldap {
2490 tom.houday 5
	server = "localhost"
6
	port = 389
7
	identity = "cn=alcasaradmin;cn=Users;dc=serverad;dc=com"
8
	password = "mypass"
9
	base_dn = "cn=Users;dc=serverad;dc=com"
2705 tom.houday 10
	user {
11
		base_dn = "${..base_dn}"
12
		# "samaccountname=" for AD; "uid=" for LDAP
13
		filter = (samaccountname=%{%{Stripped-User-Name}:-%{User-Name}})
14
	}
15
	options {
16
		chase_referrals = yes
17
		rebind = yes
18
		res_timeout = 10
19
		srv_timelimit = 3
20
		net_timeout = 1
21
		idle = 60
22
		probes = 3
23
		interval = 3
24
#		ldap_debug = 0x0129
25
	}
26
	tls {
27
#		start_tls = yes
28
#		ca_file = /etc/raddb/certs/alcasar-ldaps.crt
29
#		ca_path = ${certdir}
30
#		certificate_file = /path/to/radius.crt
31
#		private_key_file = /path/to/radius.key
32
#		random_file = /dev/urandom
33
#		require_cert = 'demand'
34
	}
35
	pool {
36
		start = 5
37
		min = 3
38
		max = 10
39
		uses = 0
40
		retry_delay = 30
41
		lifetime = 0
42
		idle_timeout = 60
43
	}
2465 richard 44
}