Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # LDAP authentication for proftpd, using posixGroups, as used by default within the kolab collaboration server
- # subunit: ou=FTPGroups,ou=Groups,dc=domain,dc=com
- # Author: Henning Hollermann
- # Website: laclaro.wordpress.com
- # License: GPLv3
- <IfModule mod_ldap.c>
- LDAPUseTLS yes
- AuthPAM off
- LDAPSearchScope subtree
- LDAPServer "127.0.0.1"
- LDAPAuthBinds on
- LDAPBindDN "uid=kolab-service,ou=Special Users,dc=domain,dc=com" SERVICEPLAINPASSWORD
- LDAPDefaultUID 123
- LDAPDefaultGID 456
- LDAPDefaultAuthScheme MD5
- # all users in the people unit are possible users
- LDAPUsers ou=People,dc=domain,dc=com "(&(uid=%u)(objectClass=kolabinetorgperson)(authorizedService=ftp))"
- # groups have to be posixgroups with a uid number within ou=FTPGroups,ou=Groups,dc=domain,dc=com
- # first filter: group cn, second filter: group id, third filter: member uid
- LDAPGroups ou=FTPGroups,ou=Groups,dc=domain,dc=com "(&(cn=%u)(objectClass=groupOfUniqueNames)(objectclass=posixgroup))" "(&(gidNumber=%u)(objectClass=groupOfUniqueNames)(objectclass=posixgroup))" "(&(uniqueMember=uid=%u,ou=People,dc=domain,dc=com)(objectClass=groupOfUniqueNames)(objectclass=posixgroup))"
- # create home directory, has to be writable by the proftpd user
- LDAPGenerateHomedirPrefix "/var/ftp/home/"
- LDAPGenerateHomedir on
- LDAPGenerateHomedir on
- LDAPForceGeneratedHomedir on
- </IfModule>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement