39 lines
820 B
Plaintext
39 lines
820 B
Plaintext
|
{{ ansible_header | comment }}
|
||
|
# /etc/nslcd.conf
|
||
|
# nslcd configuration file. See nslcd.conf(5)
|
||
|
# for details.
|
||
|
|
||
|
# The user and group nslcd should run as.
|
||
|
uid nslcd
|
||
|
gid nslcd
|
||
|
|
||
|
# The location at which the LDAP server(s) should be reachable.
|
||
|
{% if 'slapd' in group_names %}
|
||
|
uri ldapi:///
|
||
|
{% else %}
|
||
|
{% for server in ldap.servers %}
|
||
|
uri ldaps://{{ server }}/
|
||
|
{% endfor %}
|
||
|
{% endif %}
|
||
|
|
||
|
# The search base that will be used for all queries.
|
||
|
base {{ ldap.base }}
|
||
|
|
||
|
# The LDAP protocol version to use.
|
||
|
#ldap_version 3
|
||
|
|
||
|
# The DN to bind with for normal lookups.
|
||
|
#binddn cn=annonymous,dc=example,dc=net
|
||
|
#bindpw secret
|
||
|
|
||
|
# The DN used for password modifications by root.
|
||
|
#rootpwmoddn cn=admin,dc=example,dc=com
|
||
|
|
||
|
# SSL options
|
||
|
#ssl off
|
||
|
tls_reqcert allow
|
||
|
tls_cacertfile /etc/ssl/certs/ca-certificates.crt
|
||
|
|
||
|
# The search scope.
|
||
|
#scope sub
|