Samba e OpenLDAP: creare un controller di dominio con Debian Lenny: differenze tra le versioni

Vai alla navigazione Vai alla ricerca
Riga 232: Riga 232:
ldapTLS="0"
ldapTLS="0"
# How to verify the server's certificate (none, optional or require)
# How to verify the server's certificate (none, optional or require)
# see "man Net::LDAP" in start_tls section for more details
verify="require"
verify="none"
# CA certificate
# CA certificate
# see "man Net::LDAP" in start_tls section for more details
cafile="/etc/smbldap-tools/ca.pem"
#cafile="/etc/opt/IDEALX/smbldap-tools/ca.pem"
# certificate to use to connect to the ldap server
# certificate to use to connect to the ldap server
# see "man Net::LDAP" in start_tls section for more details
clientcert="/etc/smbldap-tools/smbldap-tools.pem"
#clientcert="/etc/opt/IDEALX/smbldap-tools/smbldap-tools.pem"
# key certificate to use to connect to the ldap server
# key certificate to use to connect to the ldap server
# see "man Net::LDAP" in start_tls section for more details
clientkey="/etc/smbldap-tools/smbldap-tools.key"
#clientkey="/etc/opt/IDEALX/smbldap-tools/smbldap-tools.key"
# LDAP Suffix
# LDAP Suffix
suffix="dc=dominio,dc=local"
suffix="dc=dominio,dc=local"
Riga 250: Riga 246:
# Where are stored Computers
# Where are stored Computers
# Warning: if 'suffix' is not set here, you must set the full dn for computersdn
# Warning: if 'suffix' is not set here, you must set the full dn for computersdn
computersdn="ou=machines,${suffix}"
computersdn="ou=computers,${suffix}"
# Where are stored Groups
# Where are stored Groups
# Warning: if 'suffix' is not set here, you must set the full dn for groupsdn
# Warning: if 'suffix' is not set here, you must set the full dn for groupsdn
Riga 256: Riga 252:
# Where are stored Idmap entries (used if samba is a domain member server)
# Where are stored Idmap entries (used if samba is a domain member server)
# Warning: if 'suffix' is not set here, you must set the full dn for idmapdn
# Warning: if 'suffix' is not set here, you must set the full dn for idmapdn
#idmapdn="ou=Idmap,${suffix}"
#idmapdn="ou=dmap,${suffix}"
# Where to store next uidNumber and gidNumber available for new users and groups
# Where to store next uidNumber and gidNumber available for new users and groups
# If not defined, entries are stored in sambaDomainName object.
# If not defined, entries are stored in sambaDomainName object.
sambaUnixIdPooldn="sambaDomainName=DOMINIO,${suffix}"
sambaUnixIdPooldn="sambaDomainName=${sambaDomain},${suffix}"
# Default scope Used
# Default scope Used
scope="sub"
scope="sub"
Riga 291: Riga 287:
# you don't want password to be enable for defaultMaxPasswordAge days (be
# you don't want password to be enable for defaultMaxPasswordAge days (be
# careful to the sambaPwdMustChange attribute's value)
# careful to the sambaPwdMustChange attribute's value)
#defaultMaxPasswordAge="180"
defaultMaxPasswordAge="180"
##############################################################################
##############################################################################
##
##
Riga 313: Riga 309:
# Domain appended to the users "mail"-attribute
# Domain appended to the users "mail"-attribute
# when smbldap-useradd -M is used
# when smbldap-useradd -M is used
#mailDomain="idealx.com"
mailDomain="dominio.local"
##############################################################################
##############################################################################
#
#
Estratto da "https://guide.debianizzati.org/index.php/Samba_e_OpenLDAP:_creare_un_controller_di_dominio_con_Debian_Lenny"