Advertisement
Guest User

provider config

a guest
Jul 5th, 2012
554
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. allow bind_v2
  2.  
  3. include /etc/ldap/schema/core.schema
  4. include /etc/ldap/schema/cosine.schema
  5. include /etc/ldap/schema/nis.schema
  6. include /etc/ldap/schema/inetorgperson.schema
  7. include /etc/ldap/schema/samba.schema
  8.  
  9. pidfile /var/run/slapd/slapd.pid
  10.  
  11. argsfile /var/run/slapd/slapd.args
  12.  
  13. loglevel 0
  14.  
  15. modulepath /usr/lib/ldap
  16. moduleload back_bdb
  17. moduleload syncprov
  18.  
  19. sizelimit 500
  20.  
  21. tool-threads 1
  22.  
  23. backend bdb
  24. database bdb
  25. suffix "dc=gis,dc=de"
  26. checkpoint 512 15
  27. directory "/var/lib/ldap"
  28. dbconfig set_lk_max_objects 5000
  29. dbconfig set_lk_max_locks 5000
  30. dbconfig set_lk_max_lockers 5000
  31. dbconfig set_cachesize 0 2097152 0
  32. dbconfig set_lg_max 2097152
  33. dbconfig set_lg_bsize 524288
  34. index objectclass,entryCSN,entryUUID eq
  35. cachesize 10000
  36. lastmod on
  37.  
  38. rootdn cn=admin,ou=ldapadmin,dc=gis,dc=de
  39. overlay syncprov
  40. syncprov-checkpoint 10 100
  41. syncprov-sessionlog 100
  42.  
  43.  
  44. access to attrs=userPassword,sambaLMPassword,sambaNTPassword,sambaPwdLastSet,sambaPwdMustChange
  45. by dn.one="ou=ldapadmin,dc=gis,dc=de" write
  46. by dn.one="ou=erpadmin,dc=gis,dc=de" write
  47. by dn="cn=samba,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  48. by dn="cn=smbldap-tools,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  49. by dn="cn=nssldap,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  50. by dn.one="ou=service-host,dc=gis,dc=de" read
  51. by anonymous auth
  52. by self write
  53. by * none
  54.  
  55. access to attrs=objectClass,entry,gecos,homeDirectory,uid,uidNumber,gidNumber,cn,memberUid
  56. by dn.one="ou=ldapadmin,dc=gis,dc=de" write
  57. by dn="cn=samba,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  58. by dn="cn=smbldap-tools,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  59. by * read
  60.  
  61. Access to attrs=description,telephoneNumber
  62. by dn.one="ou=ldapadmin,dc=gis,dc=de" write
  63. by dn="cn=samba,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  64. by dn="cn=smbldap-tools,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  65. by self write
  66. by * read
  67.  
  68. access to attrs=cn,sambaLMPassword,sambaNTPassword,sambaPwdLastSet,sambaLogonTime,sambaLogoffTime,sambaKickoffTime,sambaPwdCanChange,sambaPwdMustChange,sambaAcctFlags,displayName,sambaHomePath,sambaHomeDrive,sambaLogonScript,sambaProfilePath,description,sambaUserWorkstations,sambaPrimaryGroupSID,sambaDomainName,sambaSID,sambaGroupType,sambaNextRid,sambaNextGroupRid,sambaNextUserRid,sambaAlgorithmicRidBase
  69. by dn.one="ou=ldapadmin,dc=gis,dc=de" write
  70. by dn="cn=samba,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  71. by dn="cn=smbldap-tools,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  72. by self read
  73. by * none
  74.  
  75. access to dn.base="ou=samba,ou=service,dc=gis,dc=de"
  76. by dn.one="ou=ldapadmin,dc=gis,dc=de" write
  77. by dn="cn=samba,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  78. by dn="cn=smbldap-tools,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  79. by * none
  80.  
  81. access to dn.regex="ou=Users,ou=samba,ou=service,dc=gis,dc=de"
  82. by dn.one="ou=ldapadmin,dc=gis,dc=de" write
  83. by dn="cn=samba,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  84. by dn="cn=smbldap-tools,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  85. by * none
  86.  
  87. access to dn.regex="ou=Groups,ou=samba,ou=service,dc=gis,dc=de"
  88. by dn.one="ou=ldapadmin,dc=gis,dc=de" write
  89. by dn="cn=samba,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  90. by dn="cn=smbldap-tools,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  91. by * none
  92.  
  93. access to dn.regex="ou=Computers,ou=samba,ou=service,dc=gis,dc=de"
  94. by dn.one="ou=ldapadmin,dc=gis,dc=de" write
  95. by dn="cn=samba,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  96. by dn="cn=smbldap-tools,ou=DSA,ou=samba,ou=service,dc=gis,dc=de" write
  97. by * none
  98.  
  99. access to dn="cn=admin,ou=ldapadmin,dc=gis,dc=de"
  100. by anonymous auth
  101. by self write
  102. by * none
  103.  
  104. access to dn.base="" by * read
  105.  
  106. access to *
  107. by dn.one="ou=ldapadmin,dc=gis,dc=de" write
  108. by * read
Advertisement
RAW Paste Data Copied
Advertisement