-
Notifications
You must be signed in to change notification settings - Fork 1
LDAP client
rbw0 edited this page Jun 27, 2018
·
4 revisions
Lets you configure how to access the LDAP server
| Name | required | data type | default | notes |
|---|---|---|---|---|
| uri | yes | string | LDAP server URI | |
| base_dn | yes | string | Directory base DN | |
| bind_dn | yes | string | Bind DN user | |
| secret | yes | string | Bind DN password | |
| debug | no | enum | ['basic', 'network', 'extended'] | |
| return_error_details | no | boolean | False | Return LDAP error details in the response |
settings/ldap.yaml
# Connection settings
uri: ldaps://ipa.demo1.freeipa.org:636
base_dn: cn=compat,dc=demo1,dc=freeipa,dc=org
conn_timeout: 5 # Give up after this many seconds
# Authentication
bind_dn: uid=admin,cn=users,cn=accounts,dc=demo1,dc=freeipa,dc=org
secret: Secret123
# Directory server type
# ---------------------
# Currently supports one of: ['ad', 'freeipa', 'custom']
#
# While not required, setting a `directory_type` can be useful as it:
# 1) Enables directory-specific functionality
# 2) Configures User and Group overridable schema defaults (object classes, field mappings etc)
#
# Not specifying a directory type defaults to 'custom', requiring you to define at least -
# `classes` and `fields` in the User and Group schemas.
#
# Check out the wiki for more info.
# https://github.com/rbw0/redap/wiki/Working-with-schemas
directory_type: freeipa
# Return details about LDAP errors to the client
return_error_details: true