source: main/linuxmuster-base/branches/testing/var/config-dynamic/15_ldap/smbldap.conf @ 787

Revision 787, 6.3 KB checked in by tschmitt, 23 months ago (diff)
  • svn Id für alle Dateien gesetzt.
  • paedml50-upgrade.sh & postinst:
    • obsolete Apache2-Konfigurationsdateien /etc/apache2/mods-enabled/mime_magic.* werden entfernt.
  • horde-upgrade.sh:
    • Paket php-net-sieve wird neuinstalliert (schließt #259).
  • Property svn:keywords set to Id
Line 
1# $Source: /var/lib/linmus/sophomorix2/sophomorix-pgldap/config-ldap/smbldap.conf.template,v $
2# $Id$
3#
4# smbldap-tools.conf : Q & D configuration file for smbldap-tools
5
6#  This code was developped by IDEALX (http://IDEALX.org/) and
7#  contributors (their names can be found in the CONTRIBUTORS file).
8#
9#                 Copyright (C) 2001-2002 IDEALX
10#
11#  This program is free software; you can redistribute it and/or
12#  modify it under the terms of the GNU General Public License
13#  as published by the Free Software Foundation; either version 2
14#  of the License, or (at your option) any later version.
15#
16#  This program is distributed in the hope that it will be useful,
17#  but WITHOUT ANY WARRANTY; without even the implied warranty of
18#  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
19#  GNU General Public License for more details.
20#
21#  You should have received a copy of the GNU General Public License
22#  along with this program; if not, write to the Free Software
23#  Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307,
24#  USA.
25
26#  Purpose :
27#       . be the configuration file for all smbldap-tools scripts
28
29##############################################################################
30#
31# General Configuration
32#
33##############################################################################
34
35# Put your own SID
36# to obtain this number do: net getlocalsid
37SID="@@sambasid@@"
38
39# Domain name the Samba server is in charged.
40# If not defined, parameter is taking from smb.conf configuration file
41# Ex: sambaDomain="IDEALX-NT"
42sambaDomain="@@workgroup@@"
43
44##############################################################################
45#
46# LDAP Configuration
47#
48##############################################################################
49
50# Notes: to use to dual ldap servers backend for Samba, you must patch
51# Samba with the dual-head patch from IDEALX. If not using this patch
52# just use the same server for slaveLDAP and masterLDAP.
53# Those two servers declarations can also be used when you have
54# . one master LDAP server where all writing operations must be done
55# . one slave LDAP server where all reading operations must be done
56#   (typically a replication directory)
57# Ex: slaveLDAP=127.0.0.1
58
59#Slave Eintrag wird wegen einem Bug in den Tools benötigt
60slaveLDAP="127.0.0.1"
61slavePort="389"
62
63# Master LDAP : needed for write operations
64# Ex: masterLDAP=127.0.0.1
65masterLDAP="127.0.0.1"
66masterPort="389"
67
68# Use TLS for LDAP
69# If set to 1, this option will use start_tls for connection
70# (you should also used the port 389)
71ldapTLS="0"
72
73# How to verify the server's certificate (none, optional or require)
74# see "man Net::LDAP" in start_tls section for more details
75verify="require"
76
77# CA certificate
78# see "man Net::LDAP" in start_tls section for more details
79cafile="/etc/smbldap-tools/ca.pem"
80
81# certificate to use to connect to the ldap server
82# see "man Net::LDAP" in start_tls section for more details
83clientcert="/etc/smbldap-tools/smbldap-tools.pem"
84
85# key certificate to use to connect to the ldap server
86# see "man Net::LDAP" in start_tls section for more details
87clientkey="/etc/smbldap-tools/smbldap-tools.key"
88
89# LDAP Suffix
90# Ex: suffix=dc=IDEALX,dc=ORG
91suffix="@@basedn@@"
92
93# Where are stored Users
94# Ex: usersdn="ou=Users,dc=IDEALX,dc=ORG"
95usersdn="ou=accounts,${suffix}"
96
97# Where are stored Computers
98# Ex: computersdn="ou=Computers,dc=IDEALX,dc=ORG"
99computersdn="ou=machines,${suffix}"
100
101# Where are stored Groups
102# Ex groupsdn="ou=Groups,dc=IDEALX,dc=ORG"
103groupsdn="ou=groups,${suffix}"
104
105# Where are stored Idmap entries (used if samba is a domain member server)
106# Ex groupsdn="ou=Idmap,dc=IDEALX,dc=ORG"
107#idmapdn="ou=Idmap,${suffix}"
108
109# Where to store next uidNumber and gidNumber available
110sambaUnixIdPooldn="cn=NextFreeUnixId,${suffix}"
111
112# Default scope Used
113scope="sub"
114
115# Unix password encryption (CRYPT, MD5, SMD5, SSHA, SHA)
116hash_encrypt="SSHA"
117
118# if hash_encrypt is set to CRYPT, you may set a salt format.
119# default is "%s", but many systems will generate MD5 hashed
120# passwords if you use "$1$%.8s". This parameter is optional!
121crypt_salt_format="%s"
122
123##############################################################################
124#
125# Unix Accounts Configuration
126#
127##############################################################################
128
129# Login defs
130# Default Login Shell
131# Ex: userLoginShell="/bin/bash"
132userLoginShell="/bin/bash"
133
134# Home directory
135# Ex: userHome="/home/%U"
136userHome="/home/%U"
137
138# Gecos
139userGecos=""
140
141# Default User (POSIX and Samba) GID
142defaultUserGid="513"
143
144# Default Computer (Samba) GID
145defaultComputerGid="10001"
146
147# Skel dir
148skeletonDir="/etc/skel"
149
150# Default password validation time (time in days) Comment the next line if
151# you don't want password to be enable for defaultMaxPasswordAge days (be
152# careful to the sambaPwdMustChange attribute's value)
153#defaultMaxPasswordAge="99"
154defaultMaxPasswordAge="0"
155
156##############################################################################
157#
158# SAMBA Configuration
159#
160##############################################################################
161
162# The UNC path to home drives location (%U username substitution)
163# Ex: \\My-PDC-netbios-name\homes\%U
164# Just set it to a null string if you want to use the smb.conf 'logon home'
165# directive and/or disable roaming profiles
166userSmbHome=""
167
168# The UNC path to profiles locations (%U username substitution)
169# Ex: \\My-PDC-netbios-name\profiles\%U
170# Just set it to a null string if you want to use the smb.conf 'logon path'
171# directive and/or disable roaming profiles
172userProfile=""
173
174# The default Home Drive Letter mapping
175# (will be automatically mapped at logon time if home directory exist)
176# Ex: H: for H:
177userHomeDrive=""
178
179# The default user netlogon script name (%U username substitution)
180# if not used, will be automatically username.cmd
181# make sure script file is edited under dos
182# Ex: %U.cmd
183# userScript="startup.cmd" # make sure script file is edited under dos
184userScript=""
185
186# Domain appended to the users "mail"-attribute
187# when smbldap-useradd -M is used
188mailDomain=""
189
190##############################################################################
191#
192# SMBLDAP-TOOLS Configuration (default are ok for a RedHat)
193#
194##############################################################################
195
196# Allows not to use smbpasswd (if with_smbpasswd == 0 in smbldap_conf.pm) but
197# prefer Crypt::SmbHash library
198with_smbpasswd="0"
199smbpasswd="/usr/bin/smbpasswd"
Note: See TracBrowser for help on using the repository browser.