This role configures ldap.conf to use the old faveve LDAP.
None.
| Name | Required/Default | Description |
|---|---|---|
ldap_client_base |
dc=faveve, dc=uni-stuttgart, dc=de |
BASE value to set |
ldap_client_uris |
[ldaps://ldap01.faveve.uni-stuttgart.de/] |
List of URIs to set |
ldap_client_ldap_version |
3 |
LDAP version to use |
ldap_client_pam_password |
crypt |
PAM password method |
ldap_client_tls_cacert |
/etc/ssl/certs/ca-certificates.crt |
Path to the CA certificate to check against |
ldap_client_tls_cacertdir |
/etc/ssl/certs |
Directory where single CA certificates are placed (this is checked if ldap_client_tls_cacert doesn't work) |
ldap_client_tls_reqcert |
demand |
Method of checking the CA cert (never, allow (allow no cert, checking and bad certs), try (no cert or valid certs are allowed), demand (valid certificate is required) |
ldap_client_nss_initgroups_ignoreusers |
see defaults/main.yml | List of users that should never be queried to LDAP (nss_ldap module is necessary) |
- hosts: zammad
roles:
- ldap-client
vars:
ldap_client_reqcert: allowThis work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.