root@SRVPDC:/etc/smbldap-tools# ###########################################################################
root@SRVPDC:/etc/smbldap-tools# ###
root@SRVPDC:/etc/smbldap-tools# #
root@SRVPDC:/etc/smbldap-tools# # LDAP Configuration
root@SRVPDC:/etc/smbldap-tools# #
#
root@SRVPDC:/etc/smbldap-tools# ###########################################################################
root@SRVPDC:/etc/smbldap-tools# ###
root@SRVPDC:/etc/smbldap-tools# # Notes: to use to dual ldap servers backend for Samba, you must patch
root@SRVPDC:/etc/smbldap-tools# # Samba with the dual-head patch from IDEALX. If not using this patch
root@SRVPDC:/etc/smbldap-tools# # just use the same server for slaveLDAP and masterLDAP.
root@SRVPDC:/etc/smbldap-tools# # Those two servers declarations can also be used when you have
root@SRVPDC:/etc/smbldap-tools# # . one master LDAP server where all writing operations must be done
root@SRVPDC:/etc/smbldap-tools# # . one slave LDAP server where all reading operations must be done
root@SRVPDC:/etc/smbldap-tools# # (typically a replication directory)
root@SRVPDC:/etc/smbldap-tools# # Slave LDAP server
root@SRVPDC:/etc/smbldap-tools# # Ex: slaveLDAP=127.0.0.1
root@SRVPDC:/etc/smbldap-tools# # If not defined, parameter is set to "127.0.0.1"
root@SRVPDC:/etc/smbldap-tools# slaveLDAP="192.168.5.149"
o
root@SRVPDC:/etc/smbldap-tools# # Slave LDAP port
root@SRVPDC:/etc/smbldap-tools# # If not defined, parameter is set to "389"
root@SRVPDC:/etc/smbldap-tools# slavePort="389"
root@SRVPDC:/etc/smbldap-tools# # Master LDAP server: needed for write operations
root@SRVPDC:/etc/smbldap-tools# # Ex: masterLDAP=127.0.0.1
root@SRVPDC:/etc/smbldap-tools# # If not defined, parameter is set to "127.0.0.1"
root@SRVPDC:/etc/smbldap-tools# masterLDAP="192.168.5.149"
root@SRVPDC:/etc/smbldap-tools# # Master LDAP port
root@SRVPDC:/etc/smbldap-tools# # If not defined, parameter is set to "389"
root@SRVPDC:/etc/smbldap-tools# masterPort="389"
root@SRVPDC:/etc/smbldap-tools# # Use TLS for LDAP
root@SRVPDC:/etc/smbldap-tools# # If set to 1, this option will use start_tls for connection
root@SRVPDC:/etc/smbldap-tools# # (you should also used the port 389)
root@SRVPDC:/etc/smbldap-tools# # If not defined, parameter is set to "1"
root@SRVPDC:/etc/smbldap-tools# 24
bash: 24 : commande introuvable
root@SRVPDC:/etc/smbldap-tools# ldapTLS="0"
root@SRVPDC:/etc/smbldap-tools# # How to verify the server's certificate (none, optional or require)
root@SRVPDC:/etc/smbldap-tools# # see "man Net::LDAP" in start_tls section for more details
root@SRVPDC:/etc/smbldap-tools# verify=""
root@SRVPDC:/etc/smbldap-tools# # CA certificate
root@SRVPDC:/etc/smbldap-tools# # see "man Net::LDAP" in start_tls section for more details
root@SRVPDC:/etc/smbldap-tools# cafile=""
root@SRVPDC:/etc/smbldap-tools# # certificate to use to connect to the ldap server
root@SRVPDC:/etc/smbldap-tools# # see "man Net::LDAP" in start_tls section for more details
root@SRVPDC:/etc/smbldap-tools# clientcert=""
root@SRVPDC:/etc/smbldap-tools# # key certificate to use to connect to the ldap server
root@SRVPDC:/etc/smbldap-tools# # see "man Net::LDAP" in start_tls section for more details
root@SRVPDC:/etc/smbldap-tools# clientkey=""
root@SRVPDC:/etc/smbldap-tools# # LDAP Suffix
root@SRVPDC:/etc/smbldap-tools# # Ex: suffix=dc=IDEALX,dc=ORG
root@SRVPDC:/etc/smbldap-tools# suffix="dc=clininfo,dc=local"
root@SRVPDC:/etc/smbldap-tools# # Where are stored Users
root@SRVPDC:/etc/smbldap-tools# # Ex: usersdn="ou=Users,dc=IDEALX,dc=ORG"
root@SRVPDC:/etc/smbldap-tools# # Warning: if 'suffix' is not set here, you must set the full dn for usersdn
root@SRVPDC:/etc/smbldap-tools# usersdn="ou=Users,${suffix}"
root@SRVPDC:/etc/smbldap-tools# # Where are stored Computers
root@SRVPDC:/etc/smbldap-tools# # Ex: computersdn="ou=Computers,dc=IDEALX,dc=ORG"
root@SRVPDC:/etc/smbldap-tools# # Warning: if 'suffix' is not set here, you must set the full dn for computersdn
root@SRVPDC:/etc/smbldap-tools# computersdn="ou=Computers,${suffix}"
root@SRVPDC:/etc/smbldap-tools# # Where are stored Groups
root@SRVPDC:/etc/smbldap-tools# # Ex: groupsdn="ou=Groups,dc=IDEALX,dc=ORG"
root@SRVPDC:/etc/smbldap-tools# # Warning: if 'suffix' is not set here, you must set the full dn for groupsdn
root@SRVPDC:/etc/smbldap-tools# groupsdn="ou=Groups,${suffix}"
root@SRVPDC:/etc/smbldap-tools# # Where are stored Idmap entries (used if samba is a domain member server)
root@SRVPDC:/etc/smbldap-tools# # Ex: groupsdn="ou=Idmap,dc=IDEALX,dc=ORG"
root@SRVPDC:/etc/smbldap-tools# # Warning: if 'suffix' is not set here, you must set the full dn for idmapdn
root@SRVPDC:/etc/smbldap-tools# idmapdn="ou=Idmap,${suffix}"
root@SRVPDC:/etc/smbldap-tools# # Where to store next uidNumber and gidNumber available for new users and groups
root@SRVPDC:/etc/smbldap-tools# # If not defined, entries are stored in sambaDomainName object.
root@SRVPDC:/etc/smbldap-tools# # Ex: sambaUnixIdPooldn="sambaDomainName=${sambaDomain},${suffix}"
root@SRVPDC:/etc/smbldap-tools# # Ex: sambaUnixIdPooldn="cn=NextFreeUnixId,${suffix}"
root@SRVPDC:/etc/smbldap-tools# 25
bash: 25 : commande introuvable
root@SRVPDC:/etc/smbldap-tools# sambaUnixIdPooldn="sambaDomainName=clininfo,${suffix}"
root@SRVPDC:/etc/smbldap-tools# # Default scope Used
root@SRVPDC:/etc/smbldap-tools# scope="sub"
root@SRVPDC:/etc/smbldap-tools# # Unix password encryption (CRYPT, MD5, SMD5, SSHA, SHA, CLEARTEXT)
root@SRVPDC:/etc/smbldap-tools# hash_encrypt="MD5"
root@SRVPDC:/etc/smbldap-tools# # if hash_encrypt is set to CRYPT, you may set a salt format.
root@SRVPDC:/etc/smbldap-tools# # default is "%s", but many systems will generate MD5 hashed
root@SRVPDC:/etc/smbldap-tools# # passwords if you use "$1$%.8s". This parameter is optional!
root@SRVPDC:/etc/smbldap-tools# crypt_salt_format=""
root@SRVPDC:/etc/smbldap-tools# ###########################################################################
root@SRVPDC:/etc/smbldap-tools# ###
root@SRVPDC:/etc/smbldap-tools# #
root@SRVPDC:/etc/smbldap-tools# # Unix Accounts Configuration
root@SRVPDC:/etc/smbldap-tools# #
root@SRVPDC:/etc/smbldap-tools# ###########################################################################
root@SRVPDC:/etc/smbldap-tools# ###
root@SRVPDC:/etc/smbldap-tools# # Login defs
root@SRVPDC:/etc/smbldap-tools# # Default Login Shell
root@SRVPDC:/etc/smbldap-tools# # Ex: userLoginShell="/bin/bash"
root@SRVPDC:/etc/smbldap-tools# userLoginShell="/bin/bash"
root@SRVPDC:/etc/smbldap-tools# # Home directory
root@SRVPDC:/etc/smbldap-tools# # Ex: userHome="/home/%U"
root@SRVPDC:/etc/smbldap-tools# userHome="/home/%U"
root@SRVPDC:/etc/smbldap-tools# # Default mode used for user homeDirectory
root@SRVPDC:/etc/smbldap-tools# userHomeDirectoryMode="700"
root@SRVPDC:/etc/smbldap-tools# # Gecos
root@SRVPDC:/etc/smbldap-tools# userGecos="System User"
root@SRVPDC:/etc/smbldap-tools# # Default User (POSIX and Samba) GID
root@SRVPDC:/etc/smbldap-tools# defaultUserGid="513"
root@SRVPDC:/etc/smbldap-tools# # Default Computer (Samba) GID
root@SRVPDC:/etc/smbldap-tools# defaultComputerGid="515"
root@SRVPDC:/etc/smbldap-tools# # Skel dir
root@SRVPDC:/etc/smbldap-tools# skeletonDir="/etc/skel"
root@SRVPDC:/etc/smbldap-tools# # Default password validation time (time in days) Comment the next line if
root@SRVPDC:/etc/smbldap-tools# 26
bash: 26 : commande introuvable
root@SRVPDC:/etc/smbldap-tools# # you don't want password to be enable for defaultMaxPasswordAge days (be
root@SRVPDC:/etc/smbldap-tools# # careful to the sambaPwdMustChange attribute's value)
root@SRVPDC:/etc/smbldap-tools# defaultMaxPasswordAge="45"
root@SRVPDC:/etc/smbldap-tools# ##########
root@SRVPDC:/etc/smbldap-tools# ###
root@SRVPDC:/etc/smbldap-tools# #
root@SRVPDC:/etc/smbldap-tools# # SAMBA Configuration
root@SRVPDC:/etc/smbldap-tools# #
root@SRVPDC:/etc/smbldap-tools# ###########################################################################
root@SRVPDC:/etc/smbldap-tools# ###
root@SRVPDC:/etc/smbldap-tools# # The UNC path to home drives location (%U username substitution)
root@SRVPDC:/etc/smbldap-tools# # Just set it to a null string if you want to use the smb.conf 'logon home'
root@SRVPDC:/etc/smbldap-tools# # directive and/or disable roaming profiles
root@SRVPDC:/etc/smbldap-tools# # Ex: userSmbHome="\\PDC-SMB3\%U"
root@SRVPDC:/etc/smbldap-tools# userSmbHome="\\ci-ldap1\%U"
root@SRVPDC:/etc/smbldap-tools# # The UNC path to profiles locations (%U username substitution)
root@SRVPDC:/etc/smbldap-tools# # Just set it to a null string if you want to use the smb.conf 'logon path'
root@SRVPDC:/etc/smbldap-tools# # directive and/or disable roaming profiles
root@SRVPDC:/etc/smbldap-tools# # Ex: userProfile="\\PDC-SMB3\profiles\%U"
root@SRVPDC:/etc/smbldap-tools# userProfile="\\ci-ldap1\profiles\%U"
root@SRVPDC:/etc/smbldap-tools# # The default Ho
root@SRVPDC:/etc/smbldap-tools# # (will be automatically mapped at logon time if home directory exist)
root@SRVPDC:/etc/smbldap-tools# # Ex: userHomeDrive="H:"
root@SRVPDC:/etc/smbldap-tools# userHomeDrive="H:"
root@SRVPDC:/etc/smbldap-tools# # The default user netlogon script name (%U username substitution)
root@SRVPDC:/etc/smbldap-tools# # if not used, will be automatically username.cmd
root@SRVPDC:/etc/smbldap-tools# # make sure script file is edited under dos
root@SRVPDC:/etc/smbldap-tools# # Ex: userScript="startup.cmd" # make sure script file is edited under dos
root@SRVPDC:/etc/smbldap-tools# userScript=
root@SRVPDC:/etc/smbldap-tools# # Domain appended to the users "mail"-attribute
root@SRVPDC:/etc/smbldap-tools# # when smbldap-useradd -M is used
root@SRVPDC:/etc/smbldap-tools# # Ex: mailDomain="idealx.com"
root@SRVPDC:/etc/smbldap-tools# mailDomain=""
root@SRVPDC:/etc/smbldap-tools# ###########################################################################
root@SRVPDC:/etc/smbldap-tools# ###
root@SRVPDC:/etc/smbldap-tools# #
root@SRVPDC:/etc/smbldap-tools# # SMBLDAP-TOOLS Configuration (default are ok for a RedHat)
root@SRVPDC:/etc/smbldap-tools# #
root@SRVPDC:/etc/smbldap-tools# 27
bash: 27 : commande introuvable
root@SRVPDC:/etc/smbldap-tools# ###########################################################################
root@SRVPDC:/etc/smbldap-tools# ###
root@SRVPDC:/etc/smbldap-tools# # Allows not to use smbpasswd (if with_smbpasswd == 0 in smbldap_conf.pm) but
root@SRVPDC:/etc/smbldap-tools# # prefer Crypt::SmbHash library
root@SRVPDC:/etc/smbldap-tools# with_smbpasswd="0"
root@SRVPDC:/etc/smbldap-tools# smbpasswd="/usr/bin/smbpasswd"
root@SRVPDC:/etc/smbldap-tools# # Allows not to use slappasswd (if with_slappasswd == 0 in smbldap_conf.pm)
root@SRVPDC:/etc/smbldap-tools# # but prefer Crypt:: libraries
root@SRVPDC:/etc/smbldap-tools# with_slappasswd="0"
root@SRVPDC:/etc/smbldap-tools# slappasswd="/usr/sbin/slappasswd"
root@SRVPDC:/etc/smbldap-tools# # comment out the following line to get rid of the default banner
root@SRVPDC:/etc/smbldap-tools# # no_banner="1"
Partager