2015-01-01 16:34:04 +00:00
|
|
|
# LDAP Account Manager configuration
|
|
|
|
#
|
|
|
|
# Please do not modify this file manually. The configuration can be done completely by the LAM GUI.
|
|
|
|
#
|
|
|
|
###################################################################################################
|
|
|
|
|
|
|
|
# server address (e.g. ldap://localhost:389 or ldaps://localhost:636)
|
|
|
|
ServerURL: ldap://localhost:389
|
|
|
|
|
|
|
|
# list of users who are allowed to use LDAP Account Manager
|
|
|
|
# names have to be seperated by semicolons
|
|
|
|
# e.g. admins: cn=admin,dc=yourdomain,dc=org;cn=root,dc=yourdomain,dc=org
|
|
|
|
Admins: cn=Manager,dc=my-domain,dc=com
|
|
|
|
|
|
|
|
# password to change these preferences via webfrontend (default: lam)
|
2017-04-16 17:02:49 +00:00
|
|
|
Passwd: lam
|
2015-01-01 16:34:04 +00:00
|
|
|
|
|
|
|
# suffix of tree view
|
|
|
|
# e.g. dc=yourdomain,dc=org
|
|
|
|
treesuffix: dc=yourdomain,dc=org
|
|
|
|
|
|
|
|
# default language (a line from config/language)
|
|
|
|
defaultLanguage: en_GB.utf8
|
|
|
|
|
|
|
|
# Path to external Script
|
2017-04-16 17:02:49 +00:00
|
|
|
scriptPath:
|
2015-01-01 16:34:04 +00:00
|
|
|
|
|
|
|
# Server of external Script
|
2017-04-16 17:02:49 +00:00
|
|
|
scriptServer:
|
2015-01-01 16:34:04 +00:00
|
|
|
|
|
|
|
# Access rights for home directories
|
|
|
|
scriptRights: 750
|
|
|
|
|
|
|
|
# Number of minutes LAM caches LDAP searches.
|
|
|
|
cachetimeout: 5
|
|
|
|
|
|
|
|
# LDAP search limit.
|
|
|
|
searchLimit: 0
|
|
|
|
|
|
|
|
# Module settings
|
|
|
|
|
|
|
|
modules: posixAccount_minUID: 10000
|
|
|
|
modules: posixAccount_maxUID: 30000
|
|
|
|
modules: posixAccount_minMachine: 50000
|
|
|
|
modules: posixAccount_maxMachine: 60000
|
|
|
|
modules: posixGroup_minGID: 10000
|
|
|
|
modules: posixGroup_maxGID: 20000
|
|
|
|
modules: posixGroup_pwdHash: SSHA
|
|
|
|
modules: posixAccount_pwdHash: SSHA
|
|
|
|
|
|
|
|
# List of active account types.
|
|
|
|
activeTypes: user,group,host,smbDomain
|
|
|
|
|
|
|
|
|
|
|
|
types: suffix_user: ou=People,dc=my-domain,dc=com
|
|
|
|
types: attr_user: #uid;#givenName;#sn;#uidNumber;#gidNumber
|
|
|
|
types: modules_user: inetOrgPerson,posixAccount,shadowAccount,sambaSamAccount
|
|
|
|
|
|
|
|
types: suffix_group: ou=group,dc=my-domain,dc=com
|
|
|
|
types: attr_group: #cn;#gidNumber;#memberUID;#description
|
|
|
|
types: modules_group: posixGroup,sambaGroupMapping
|
|
|
|
|
|
|
|
# Password mail subject
|
|
|
|
lamProMailSubject: Your password was reset
|
|
|
|
|
|
|
|
# Password mail text
|
|
|
|
lamProMailText: Dear @@givenName@@ @@sn@@,+::++::+your password was reset to: @@newPassword@@+::++::++::+Best regards+::++::+deskside support+::+
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# enable TLS encryption
|
|
|
|
useTLS: yes
|
|
|
|
|
|
|
|
|
|
|
|
# follow referrals
|
|
|
|
followReferrals: false
|
|
|
|
|
|
|
|
|
|
|
|
# paged results
|
|
|
|
pagedResults: false
|
|
|
|
|
|
|
|
|
|
|
|
# Access level for this profile.
|
|
|
|
accessLevel: 100
|
|
|
|
|
|
|
|
|
|
|
|
# Login method.
|
|
|
|
loginMethod: list
|
|
|
|
|
|
|
|
|
|
|
|
# Search suffix for LAM login.
|
|
|
|
loginSearchSuffix: dc=yourdomain,dc=org
|
|
|
|
|
|
|
|
|
|
|
|
# Search filter for LAM login.
|
|
|
|
loginSearchFilter: uid=%USER%
|
|
|
|
|
|
|
|
|
|
|
|
# Bind DN for login search.
|
2017-04-16 17:02:49 +00:00
|
|
|
loginSearchDN:
|
2015-01-01 16:34:04 +00:00
|
|
|
|
|
|
|
|
|
|
|
# Bind password for login search.
|
2017-04-16 17:02:49 +00:00
|
|
|
loginSearchPassword:
|
2015-01-01 16:34:04 +00:00
|
|
|
|
|
|
|
|
|
|
|
# HTTP authentication for LAM login.
|
|
|
|
httpAuthentication: false
|
|
|
|
|
|
|
|
|
|
|
|
# Password mail from
|
2017-04-16 17:02:49 +00:00
|
|
|
lamProMailFrom:
|
2015-01-01 16:34:04 +00:00
|
|
|
|
|
|
|
|
|
|
|
# Password mail reply-to
|
2017-04-16 17:02:49 +00:00
|
|
|
lamProMailReplyTo:
|
2015-01-01 16:34:04 +00:00
|
|
|
|
|
|
|
|
|
|
|
# Password mail is HTML
|
|
|
|
lamProMailIsHTML: false
|
|
|
|
|
|
|
|
|
|
|
|
# Allow alternate address
|
|
|
|
lamProMailAllowAlternateAddress: true
|
|
|
|
modules: posixGroup_gidGenerator: range
|
2017-04-16 17:02:49 +00:00
|
|
|
modules: posixGroup_sambaIDPoolDN:
|
|
|
|
modules: posixGroup_gidCheckSuffix:
|
2015-01-01 16:34:04 +00:00
|
|
|
modules: posixGroup_hidememberUid: false
|
|
|
|
modules: sambaSamAccount_timeZone: 0
|
|
|
|
modules: sambaSamAccount_lmHash: yes
|
|
|
|
modules: sambaSamAccount_hideHomeDrive: false
|
|
|
|
modules: sambaSamAccount_hideHomePath: false
|
|
|
|
modules: sambaSamAccount_hideProfilePath: false
|
|
|
|
modules: sambaSamAccount_hideLogonScript: false
|
|
|
|
modules: sambaSamAccount_hideSambaPwdLastSet: false
|
|
|
|
modules: sambaSamAccount_hideWorkstations: false
|
|
|
|
modules: sambaSamAccount_hideLogonHours: false
|
|
|
|
modules: sambaSamAccount_hideTerminalServer: false
|
|
|
|
modules: posixAccount_uidGeneratorUsers: range
|
2017-04-16 17:02:49 +00:00
|
|
|
modules: posixAccount_sambaIDPoolDNUsers:
|
|
|
|
modules: posixAccount_uidCheckSuffixUser:
|
2015-01-01 16:34:04 +00:00
|
|
|
modules: posixAccount_uidGeneratorHosts: range
|
2017-04-16 17:02:49 +00:00
|
|
|
modules: posixAccount_sambaIDPoolDNHosts:
|
|
|
|
modules: posixAccount_uidCheckSuffixHost:
|
2015-01-01 16:34:04 +00:00
|
|
|
modules: posixAccount_shells: /bin/bash+::+/bin/csh+::+/bin/dash+::+/bin/false+::+/bin/ksh+::+/bin/sh
|
|
|
|
modules: posixAccount_hidegecos: false
|
|
|
|
modules: posixAccount_primaryGroupAsSecondary: false
|
|
|
|
modules: posixAccount_userNameSuggestion: @givenname@%sn%
|
|
|
|
modules: inetOrgPerson_hideDescription: false
|
|
|
|
modules: inetOrgPerson_hideStreet: false
|
|
|
|
modules: inetOrgPerson_hidePostOfficeBox: false
|
|
|
|
modules: inetOrgPerson_hidePostalCode: false
|
|
|
|
modules: inetOrgPerson_hideLocation: false
|
|
|
|
modules: inetOrgPerson_hideState: false
|
|
|
|
modules: inetOrgPerson_hidePostalAddress: false
|
|
|
|
modules: inetOrgPerson_hideRegisteredAddress: false
|
|
|
|
modules: inetOrgPerson_hideOfficeName: false
|
|
|
|
modules: inetOrgPerson_hideRoomNumber: false
|
|
|
|
modules: inetOrgPerson_hideTelephoneNumber: false
|
|
|
|
modules: inetOrgPerson_hideHomeTelephoneNumber: false
|
|
|
|
modules: inetOrgPerson_hideMobileNumber: false
|
|
|
|
modules: inetOrgPerson_hideFaxNumber: false
|
|
|
|
modules: inetOrgPerson_hidePager: true
|
|
|
|
modules: inetOrgPerson_hideEMailAddress: false
|
|
|
|
modules: inetOrgPerson_hideJobTitle: false
|
|
|
|
modules: inetOrgPerson_hideCarLicense: false
|
|
|
|
modules: inetOrgPerson_hideEmployeeType: false
|
|
|
|
modules: inetOrgPerson_hideBusinessCategory: false
|
|
|
|
modules: inetOrgPerson_hideDepartments: false
|
|
|
|
modules: inetOrgPerson_hideManager: false
|
|
|
|
modules: inetOrgPerson_hideOu: false
|
|
|
|
modules: inetOrgPerson_hideO: false
|
|
|
|
modules: inetOrgPerson_hideEmployeeNumber: false
|
|
|
|
modules: inetOrgPerson_hideInitials: false
|
|
|
|
modules: inetOrgPerson_hideLabeledURI: false
|
|
|
|
modules: inetOrgPerson_hideuserCertificate: false
|
|
|
|
modules: inetOrgPerson_hidejpegPhoto: false
|
|
|
|
modules: inetOrgPerson_readOnly_businessCategory: false
|
|
|
|
modules: inetOrgPerson_readOnly_cn: false
|
|
|
|
modules: inetOrgPerson_readOnly_employeeType: false
|
|
|
|
modules: inetOrgPerson_readOnly_postalAddress: false
|
|
|
|
modules: inetOrgPerson_readOnly_uid: false
|
|
|
|
modules: inetOrgPerson_readOnly_title: false
|
|
|
|
modules: inetOrgPerson_readOnly_description: false
|
|
|
|
modules: inetOrgPerson_readOnly_st: false
|
|
|
|
modules: inetOrgPerson_readOnly_physicalDeliveryOfficeName: false
|
|
|
|
modules: inetOrgPerson_readOnly_mail: false
|
|
|
|
modules: inetOrgPerson_readOnly_facsimileTelephoneNumber: false
|
|
|
|
modules: inetOrgPerson_readOnly_jpegPhoto: false
|
|
|
|
modules: inetOrgPerson_readOnly_carLicense: false
|
|
|
|
modules: inetOrgPerson_readOnly_labeledURI: false
|
|
|
|
modules: inetOrgPerson_readOnly_initials: false
|
|
|
|
modules: inetOrgPerson_readOnly_registeredAddress: false
|
|
|
|
modules: inetOrgPerson_readOnly_mobile: false
|
|
|
|
modules: inetOrgPerson_readOnly_sn: false
|
|
|
|
modules: inetOrgPerson_readOnly_o: false
|
|
|
|
modules: inetOrgPerson_readOnly_ou: false
|
|
|
|
modules: inetOrgPerson_readOnly_l: false
|
|
|
|
modules: inetOrgPerson_readOnly_pager: false
|
|
|
|
modules: inetOrgPerson_readOnly_userPassword: false
|
|
|
|
modules: inetOrgPerson_readOnly_employeeNumber: false
|
|
|
|
modules: inetOrgPerson_readOnly_postOfficeBox: false
|
|
|
|
modules: inetOrgPerson_readOnly_postalCode: false
|
|
|
|
modules: inetOrgPerson_readOnly_roomNumber: false
|
|
|
|
modules: inetOrgPerson_readOnly_street: false
|
|
|
|
modules: inetOrgPerson_readOnly_homePhone: false
|
|
|
|
modules: inetOrgPerson_readOnly_telephoneNumber: false
|
|
|
|
modules: inetOrgPerson_readOnly_departmentNumber: false
|
|
|
|
modules: inetOrgPerson_readOnly_manager: false
|
|
|
|
modules: inetOrgPerson_readOnly_givenName: false
|
2017-04-16 17:02:49 +00:00
|
|
|
modules: inetOrgPerson_jpegPhoto_maxWidth:
|
|
|
|
modules: inetOrgPerson_jpegPhoto_maxHeight:
|
|
|
|
modules: inetOrgPerson_jpegPhoto_maxSize:
|
|
|
|
types: filter_user:
|
|
|
|
types: customLabel_user:
|
|
|
|
types: filter_group:
|
|
|
|
types: customLabel_group:
|
|
|
|
types: hidden_user:
|
|
|
|
types: hideNewButton_user:
|
|
|
|
types: hideDeleteButton_user:
|
|
|
|
types: readOnly_user:
|
|
|
|
types: hidden_group:
|
|
|
|
types: hideNewButton_group:
|
|
|
|
types: hideDeleteButton_group:
|
|
|
|
types: readOnly_group:
|
|
|
|
types: hidden_host:
|
|
|
|
types: hideNewButton_host:
|
|
|
|
types: hideDeleteButton_host:
|
|
|
|
types: readOnly_host:
|
2015-01-01 16:34:04 +00:00
|
|
|
types: suffix_host: ou=machines,dc=my-domain,dc=com
|
|
|
|
types: attr_host: #cn;#description;#uidNumber;#gidNumber
|
2017-04-16 17:02:49 +00:00
|
|
|
types: filter_host:
|
|
|
|
types: customLabel_host:
|
|
|
|
types: hidden_smbDomain:
|
|
|
|
types: hideNewButton_smbDomain:
|
|
|
|
types: hideDeleteButton_smbDomain:
|
|
|
|
types: readOnly_smbDomain:
|
2015-01-01 16:34:04 +00:00
|
|
|
types: suffix_smbDomain: dc=my-domain,dc=com
|
|
|
|
types: attr_smbDomain: #sambaDomainName;#sambaSID
|
2017-04-16 17:02:49 +00:00
|
|
|
types: filter_smbDomain:
|
|
|
|
types: customLabel_smbDomain:
|
2015-01-01 16:34:04 +00:00
|
|
|
types: modules_host: account,posixAccount,sambaSamAccount
|
|
|
|
types: modules_smbDomain: sambaDomain
|
|
|
|
tools: tool_hide_toolServerInformation: false
|
|
|
|
tools: tool_hide_toolFileUpload: false
|
|
|
|
tools: tool_hide_toolMultiEdit: false
|
|
|
|
tools: tool_hide_toolPDFEditor: false
|
|
|
|
tools: tool_hide_toolOUEditor: false
|
|
|
|
tools: tool_hide_toolProfileEditor: false
|
|
|
|
tools: tool_hide_toolTests: false
|
|
|
|
tools: tool_hide_toolSchemaBrowser: false
|