Subversion Repositories ALCASAR

Rev

Rev 2490 | Show entire file | Ignore whitespace | Details | Blame | Last modification | View Log

Rev 2490 Rev 2705
Line 1... Line 1...
1
# -*- text -*-
1
# -*- text -*-
2
#  Lightweight Directory Access Protocol (LDAP) module for ALCASAR
2
#  Lightweight Directory Access Protocol (LDAP) module for ALCASAR
-
 
3
 
3
ldap {
4
ldap {
4
	server = "localhost"
5
	server = "localhost"
5
	port = 389
6
	port = 389
6
	identity = "cn=alcasaradmin;cn=Users;dc=serverad;dc=com"
7
	identity = "cn=alcasaradmin;cn=Users;dc=serverad;dc=com"
7
	password = "mypass"
8
	password = "mypass"
8
	base_dn = "cn=Users;dc=serverad;dc=com"
9
	base_dn = "cn=Users;dc=serverad;dc=com"
9
		user {
10
	user {
10
			base_dn = "${..base_dn}"
11
		base_dn = "${..base_dn}"
11
			#  "samaccountname=" for AD; "uid=" for LDAP
12
		# "samaccountname=" for AD; "uid=" for LDAP
12
	filter = (samaccountname=%{%{Stripped-User-Name}:-%{User-Name}})
13
		filter = (samaccountname=%{%{Stripped-User-Name}:-%{User-Name}})
13
		}
14
	}
14
		options {
15
	options {
15
			chase_referrals = yes
16
		chase_referrals = yes
16
			rebind = yes
17
		rebind = yes
17
			res_timeout = 10
18
		res_timeout = 10
18
			srv_timelimit = 3
19
		srv_timelimit = 3
19
			net_timeout = 1
20
		net_timeout = 1
20
			idle = 60
21
		idle = 60
21
			probes = 3
22
		probes = 3
22
			interval = 3
23
		interval = 3
-
 
24
#		ldap_debug = 0x0129
-
 
25
	}
-
 
26
	tls {
-
 
27
#		start_tls = yes
-
 
28
#		ca_file = /etc/raddb/certs/alcasar-ldaps.crt
-
 
29
#		ca_path = ${certdir}
-
 
30
#		certificate_file = /path/to/radius.crt
-
 
31
#		private_key_file = /path/to/radius.key
-
 
32
#		random_file = /dev/urandom
-
 
33
#		require_cert = 'demand'
23
		}
34
	}
24
		pool {
35
	pool {
25
			start = 5
36
		start = 5
26
			min = 3
37
		min = 3
27
			max = 10
38
		max = 10
28
			uses = 0
39
		uses = 0
29
			retry_delay = 30
40
		retry_delay = 30
30
			lifetime = 0
41
		lifetime = 0
31
			idle_timeout = 60
42
		idle_timeout = 60
32
		}
43
	}
33
}
44
}