Mercurial > prosody-modules
comparison mod_auth_ldap/README.markdown @ 3326:5e0193a27c53
mod_auth_ldap: Correct name of admin option (thanks pep.)
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Sun, 23 Sep 2018 14:19:47 +0200 |
| parents | d92a6daf3c8f |
| children | 7a2998e48545 |
comparison
equal
deleted
inserted
replaced
| 3325:d92a6daf3c8f | 3326:5e0193a27c53 |
|---|---|
| 28 ldap_base = "ou=people,dc=example,dc=com" | 28 ldap_base = "ou=people,dc=example,dc=com" |
| 29 ``` | 29 ``` |
| 30 | 30 |
| 31 Further LDAP options are: | 31 Further LDAP options are: |
| 32 | 32 |
| 33 Name Description Default value | 33 Name Description Default value |
| 34 ---------------- ---------------------------------------------------------------------------------------------------------------------- -------------------- | 34 --------------------- ---------------------------------------------------------------------------------------------------------------------- -------------------- |
| 35 ldap\_base LDAP base directory which stores user accounts **Required field** | 35 ldap\_base LDAP base directory which stores user accounts **Required field** |
| 36 ldap\_server Space-separated list of hostnames or IPs, optionally with port numbers (e.g. "localhost:8389") `"localhost"` | 36 ldap\_server Space-separated list of hostnames or IPs, optionally with port numbers (e.g. "localhost:8389") `"localhost"` |
| 37 ldap\_rootdn The distinguished name to auth against `""` (anonymous) | 37 ldap\_rootdn The distinguished name to auth against `""` (anonymous) |
| 38 ldap\_password Password for rootdn `""` | 38 ldap\_password Password for rootdn `""` |
| 39 ldap\_filter Search filter, with `$user` and `$host` substituted for user- and hostname `"(uid=$user)"` | 39 ldap\_filter Search filter, with `$user` and `$host` substituted for user- and hostname `"(uid=$user)"` |
| 40 ldap\_scope Search scope. other values: "base" and "onelevel" `"subtree"` | 40 ldap\_scope Search scope. other values: "base" and "onelevel" `"subtree"` |
| 41 ldap\_tls Enable TLS (StartTLS) to connect to LDAP (can be true or false). The non-standard 'LDAPS' protocol is not supported. `false` | 41 ldap\_tls Enable TLS (StartTLS) to connect to LDAP (can be true or false). The non-standard 'LDAPS' protocol is not supported. `false` |
| 42 ldap\_mode How passwords are validated. `"bind"` | 42 ldap\_mode How passwords are validated. `"bind"` |
| 43 ldap\_admins Search filter to match admins, works like ldap\_filter | 43 ldap\_admin\_filter Search filter to match admins, works like ldap\_filter |
| 44 | 44 |
| 45 **Note:** lua-ldap reads from `/etc/ldap/ldap.conf` and other files like | 45 **Note:** lua-ldap reads from `/etc/ldap/ldap.conf` and other files like |
| 46 `~prosody/.ldaprc` if they exist. Users wanting to use a particular TLS | 46 `~prosody/.ldaprc` if they exist. Users wanting to use a particular TLS |
| 47 root certificate can specify it in the normal way using TLS\_CACERT in | 47 root certificate can specify it in the normal way using TLS\_CACERT in |
| 48 the OpenLDAP config file. | 48 the OpenLDAP config file. |