Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [root@ovm aaa]# cat psecure.properties
- #
- # Select one
- #
- #include = <openldap.properties>
- include = <ad.properties>
- #include = <389ds.properties>
- #include = <rhds.properties>
- #include = <ipa.properties>
- #include = <iplanet.properties>
- #include = <rfc2307-389ds.properties>
- #include = <rfc2307-rhds.properties>
- #include = <rfc2307-openldap.properties>
- #include = <rfc2307-edir.properties>
- #include = <rfc2307-generic.properties>
- #
- # Server
- #
- vars.server = psbngdc01.psecure.net
- #vars.server = ldap1.company.com
- #
- # Search user and its password.
- #
- #vars.user = uid=search,cn=users,cn=accounts,dc=company,dc=com
- #vars.password = 123456
- vars.domain = psecure.net
- vars.user = user1@${global:vars.domain}
- vars.password = password
- # Uncomment in case you don't have allowed anonymous bind,
- # because we use anonymous bind for authn pool:
- #pool.default.auth.type = simple
- pool.default.serverset.single.server = ${global:vars.server}
- pool.default.auth.simple.bindDN = ${global:vars.user}
- pool.default.auth.simple.password = ${global:vars.password}
- # Create keystore, import root certificate and uncomment
- # if using ssl/tls.
- #pool.default.ssl.startTLS = true
- #pool.default.ssl.truststore.file = ${local:_basedir}/${global:vars.server}.jks
- #pool.default.ssl.truststore.password = changeit
- [root@ovm aaa]#
- =====================================================================================
- [root@ovm extensions.d]# cat psecure-authn.properties
- ovirt.engine.extension.name = psecure-authn
- ovirt.engine.extension.bindings.method = jbossmodule
- ovirt.engine.extension.binding.jbossmodule.module = org.ovirt.engine-extensions.aaa.ldap
- ovirt.engine.extension.binding.jbossmodule.class = org.ovirt.engineextensions.aaa.ldap.AuthnExtension
- ovirt.engine.extension.provides = org.ovirt.engine.api.extensions.aaa.Authn
- ovirt.engine.aaa.authn.profile.name = psecure
- ovirt.engine.aaa.authn.authz.plugin = psecure-authz
- config.profile.file.1 = /etc/ovirt-engine/aaa/psecure.properties
- [root@ovm extensions.d]#
- =============================================================================================
- [root@ovm extensions.d]# cat psecure-authz.properties
- ovirt.engine.extension.name = psecure-authz
- ovirt.engine.extension.bindings.method = jbossmodule
- ovirt.engine.extension.binding.jbossmodule.module = org.ovirt.engine-extensions.aaa.ldap
- ovirt.engine.extension.binding.jbossmodule.class = org.ovirt.engineextensions.aaa.ldap.AuthzExtension
- ovirt.engine.extension.provides = org.ovirt.engine.api.extensions.aaa.Authz
- config.profile.file.1 = /etc/ovirt-engine/aaa/psecure.properties
- [root@ovm extensions.d]#
Add Comment
Please, Sign In to add comment