# # This is the configuration file for the LDAP nameservice # switch library and the LDAP PAM module. # Your LDAP server. Must be resolvable without using LDAP. # Multiple hosts may be specified, each separated by a # space. How long nss_ldap takes to failover depends on # whether your LDAP client library supports configurable # network or connect timeouts (see bind_timelimit). host 192.168.0.3 # The distinguished name of the search base. base cn=Users,DC=domain,DC=com # Another way to specify your LDAP server is to provide an # uri with the server name. This allows to use # Unix Domain Sockets to connect to a local LDAP Server. #uri ldap://127.0.0.1/ #uri ldaps://127.0.0.1/ #uri ldapi://%2fvar%2frun%2fldapi_sock/ uri ldap://system.domain.com # Note: %2f encodes the '/' used as directory separator # The distinguished name to bind to the server with. # Optional: default is to bind anonymously. # in this example, the user on the Windows system is # called 'ldapauth' binddn cn=ldapauth,cn=Users,dc=proteomesystems,dc=com # The credentials to bind with. # Optional: default is no credential. # Below, we use the password set for user ldapauth above. bindpw passwordforldapauth # The search scope. scope sub # Services for UNIX 3.5 mappings nss_base_passwd cn=Users,dc=proteomesystems,dc=com?sub nss_base_shadow cn=Users,dc=proteomesystems,dc=com?sub nss_base_group cn=Users,dc=proteomesystems,dc=com?sub nss_map_objectclass posixAccount User nss_map_objectclass shadowAccount User nss_map_attribute uid msSFU30Name nss_map_attribute uniqueMember Member nss_map_attribute uidNumber msSFU30UidNumber nss_map_attribute gidNumber msSFU30GidNumber nss_map_attribute loginShell msSFU30LoginShell nss_map_attribute gecos name nss_map_attribute userPassword msSFU30Password nss_map_attribute homeDirectory msSFU30HomeDirectory nss_map_objectclass posixGroup Group nss_map_attribute cn msSFU30Name pam_login_attribute sAMAName pam_filter objectclass=User pam_member_attribute msSFU30PosixMember pam_password ad ssl no