21 lines
619 B
Django/Jinja
21 lines
619 B
Django/Jinja
#
|
|
# NSLCD.CONF(5)
|
|
#
|
|
|
|
uri {{ ldap_uri }}
|
|
base {{ ldap_search_base }}
|
|
ssl on
|
|
binddn {{ ldap_bind_dn }}
|
|
bindpw {{ secrets.ldap_bind_password }}
|
|
scope sub
|
|
timelimit 10
|
|
bind_timelimit 10
|
|
|
|
pam_password_prohibit_message "Password changes are not permitted for externally-managed users. To change your password, please visit {{ kanidm_uri }}/ui/profile."
|
|
map passwd homeDirectory "${homeDirectory:-{{ homedir_base | default('/home') }}/$uuid}"
|
|
map group memberUid member
|
|
filter user {{ ldap_user_filter }}
|
|
filter group (|(objectClass=posixAccount)(objectClass=posixGroup))
|
|
nss_min_uid 65536
|
|
nss_initgroups_ignoreusers ALLLOCAL
|