This repository has been archived by the owner on Sep 18, 2018. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 149
LDAP FreeIPA
Dorian Maspataud edited this page Aug 5, 2015
·
1 revision
The following is an example of configuration file working on FreeIPA version 4.1.0.
Replace all the parameters between <> with your own parameters. The rest of the configuration file should work natively with FreeIPA.
# LDAP server details
uri = ldap://your_freeipa_server:389
binddn = uid=<your_bind_user>,cn=sysaccounts,cn=etc,dc=<your_domain>,dc=<your_tld>
bindpw = <your_bind_user_password>
# User parameters
userbase = cn=users,cn=accounts,dc=<your_domain>,dc=<your_tld>
userfilter = (uid=%(user)s)
# Set up the basic group parameters.
groupbase = cn=groups,cn=accounts,dc=<your_domain>,dc=<your_tld>
groupfilter = (objectClass=nestedgroup)
grouptype = NestedGroupOfNamesType
# How do I find staff
staff = cn=<ratticdb_admin_group>,cn=groups,cn=accounts,dc=<your_domain>,dc=<your_tld>
The binddn user should not be created directly in FreeIPA (see http://www.freeipa.org/page/HowTo/LDAP).
You will need to create a User Group dedicated to ratticdb administrator in FreeIPA.