API tools faq
paste
Advertisement
Guest User

DCS Ldap configuration

a guest
Sep 11th, 2013
58
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
XML 4.66 KB | None | 0 0
raw download clone embed print report
  1.     <key>DirectoryService</key>
  2.     <dict>
  3.       <key>type</key>
  4.       <string>twistedcaldav.directory.ldapdirectory.LdapDirectoryService</string>
  5.  
  6.       <key>params</key>
  7.       <dict>
  8.         <key>recordTypes</key>
  9.         <array>
  10.            <string>users</string>
  11.            <string>groups</string>
  12.            <string>locations</string>
  13.            <string>resources</string>
  14.         </array>
  15.         <key>restrictEnabledRecords</key>
  16.         <false/>
  17.         <key>restrictToGroup</key>
  18.         <string>odtestgrouptop</string>
  19.         <key>cacheTimeout</key>
  20.         <integer>30</integer>
  21.         <key>uri</key>
  22. <!-- our LDAP server URL -->
  23.         <key>tls</key>
  24.         <false/>
  25.         <key>tlsCACertFile</key>
  26.         <string></string>
  27.         <key>tlsCACertDir</key>
  28.         <string></string>
  29.         <key>tlsRequireCert</key>
  30.         <string>never</string>
  31.         <key>credentials</key>
  32.         <dict>
  33.           <key>dn</key>
  34. <!-- our LDAP server BIND_DN -->
  35.           <key>password</key>
  36. <!-- also the password. It does connect properly -->
  37.         </dict>
  38.         <key>authMethod</key>
  39.         <string>LDAP</string>
  40.         <key>rdnSchema</key>
  41.         <dict>
  42.           <key>base</key>
  43.           <string>dc=example,dc=base,dc=path</string> <!-- replaced with a fake one, but it works for users so I am confident I have the correct base -->
  44.           <key>guidAttr</key>
  45.           <string>entryUUID</string> <!-- LDAP attribute used for GUIDs. entryUUID -->
  46.           <key>users</key>
  47.           <dict>
  48.             <key>rdn</key>
  49.             <string>cn=users</string> <!-- users path relative to the base dn -->
  50.             <key>attr</key>
  51.             <string>uid</string>
  52.             <key>emailSuffix</key>
  53.             <string></string>
  54.             <key>filter</key>
  55.             <string></string>
  56.             <key>loginEnabledAttr</key>
  57.             <string></string>
  58.             <key>loginEnabledValue</key>
  59.             <string>yes</string>
  60.             <key>mapping</key>
  61.             <dict>
  62.               <key>recordName</key>
  63.               <string>uid</string>
  64.               <key>fullName</key>
  65.               <string>cn</string>
  66.               <key>emailAddresses</key>
  67.               <string>mail</string>
  68.               <key>firstName</key>
  69.               <string>givenName</string>
  70.               <key>lastName</key>
  71.               <string>sn</string>
  72.             </dict>
  73.           </dict>
  74.           <key>groups</key>
  75.           <dict>
  76.             <key>rdn</key>
  77.             <string>groupCategory=instruments</string>
  78.             <key>attr</key>
  79.             <string>memberUid</string>
  80.             <key>emailSuffix</key>
  81.             <string></string>
  82.             <key>filter</key>
  83.             <string></string>
  84.             <key>mapping</key>
  85.             <dict>
  86.               <key>recordName</key>
  87.               <string>uid</string>
  88.               <key>fullName</key>
  89.               <string>cn</string>
  90.               <key>emailAddresses</key>
  91.               <string>mail</string>
  92.               <key>firstName</key>
  93.               <string>givenName</string>
  94.               <key>lastName</key>
  95.               <string>sn</string>
  96.             </dict>
  97.           </dict>
  98.  
  99.           <key>resources</key>
  100.           <dict>
  101.             <key>rdn</key>
  102.             <string>groupCategory=instruments</string>
  103.             <!-- <string>ou=resources</string> --> <!-- dn for resources (relative to base dn) -->
  104.             <key>mapping</key>
  105.             <dict>
  106.               <key>recordName</key>
  107.               <string>cn</string>
  108.               <key>fullName</key>
  109.               <string>cn</string>
  110.               <key>emailAddresses</key>
  111.               <array>
  112.               </array>
  113.               <key>firstName</key>
  114.               <string></string>
  115.               <key>lastName</key>
  116.               <string></string>
  117.             </dict>
  118.           </dict>
  119.         </dict>
  120.         <key>groupSchema</key>
  121. <!-- I think this part is not configured correctly -->
  122.         <dict>
  123.           <key>membersAttr</key>
  124.           <string>uniqueMember</string>
  125.           <key>nestedGroupsAttr</key>
  126.           <string></string>
  127.           <key>memberIdAttr</key>
  128.           <string>memberUid</string>
  129.         </dict>
  130.         <key>resourceSchema</key>
  131.         <dict>
  132.           <key>resourceInfoAttr</key>
  133.           <string>apple-resource-info</string>
  134.           <key>autoScheduleAttr</key>
  135.           <string></string>
  136.           <key>autoScheduleEnabledValue</key>
  137.           <string>yes</string>
  138.           <key>proxyAttr</key>
  139.           <string></string>
  140.           <key>readOnlyProxyAttr</key>
  141.           <string></string>
  142.         </dict>
  143.       </dict>
  144.     </dict>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!