diff options
| author | Arthur de Jong <arthur@arthurdejong.org> | 2006-12-19 15:04:13 +0000 |
|---|---|---|
| committer | Arthur de Jong <arthur@arthurdejong.org> | 2006-12-19 15:04:13 +0000 |
| commit | 568ec1e79ddcf1d3bca8468ed95aea9279755f50 (patch) | |
| tree | 443075c7e32a707dec546e96230fabe5e1c20a0c | |
| parent | ad851c4be8cca8274b95dbcda2796c92b14a96f7 (diff) | |
get rid of pam stuff
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/libnss_ldapd@185 ef36b2f9-881f-0410-afb5-c4e39611909c
| -rw-r--r-- | nss-ldapd.conf | 97 |
1 files changed, 1 insertions, 96 deletions
diff --git a/nss-ldapd.conf b/nss-ldapd.conf index c700f39..fe49c0d 100644 --- a/nss-ldapd.conf +++ b/nss-ldapd.conf @@ -1,5 +1,5 @@ # This is the configuration file for the LDAP nameservice -# switch library and the LDAP PAM module. +# switch library. # The uri pointing to the LDAP server to use for name lookups. # Mulitple entries may be specified, each separated by a @@ -72,87 +72,6 @@ base dc=example,dc=net # pagesize to a custom value #pagesize 1000 -# Filter to AND with uid=%s -#pam_filter objectclass=account - -# The user ID attribute (defaults to uid) -#pam_login_attribute uid - -# Search the root DSE for the password policy (works -# with Netscape Directory Server) -#pam_lookup_policy yes - -# Check the 'host' attribute for access control -# Default is no; if set to yes, and user has no -# value for the host attribute, and pam_ldap is -# configured for account management (authorization) -# then the user will not be allowed to login. -#pam_check_host_attr yes - -# Check the 'authorizedService' attribute for access -# control -# Default is no; if set to yes, and the user has no -# value for the authorizedService attribute, and -# pam_ldap is configured for account management -# (authorization) then the user will not be allowed -# to login. -#pam_check_service_attr yes - -# Group to enforce membership of -#pam_groupdn cn=PAM,ou=Groups,dc=padl,dc=com - -# Group member attribute -#pam_member_attribute uniquemember - -# Specify a minium or maximum UID number allowed -#pam_min_uid 0 -#pam_max_uid 0 - -# Template login attribute, default template user -# (can be overriden by value of former attribute -# in user's entry) -#pam_login_attribute userPrincipalName -#pam_template_login_attribute uid -#pam_template_login nobody - -# HEADS UP: the pam_crypt, pam_nds_passwd, -# and pam_ad_passwd options are no -# longer supported. -# -# Do not hash the password at all; presume -# the directory server will do it, if -# necessary. This is the default. -#pam_password clear - -# Hash password locally; required for University of -# Michigan LDAP server, and works with Netscape -# Directory Server if you're using the UNIX-Crypt -# hash mechanism and not using the NT Synchronization -# service. -#pam_password crypt - -# Remove old password first, then update in -# cleartext. Necessary for use with Novell -# Directory Services (NDS) -#pam_password nds - -# RACF is an alias for the above. For use with -# IBM RACF -#pam_password racf - -# Update Active Directory password, by -# creating Unicode password and updating -# unicodePwd attribute. -#pam_password ad - -# Use the OpenLDAP password change -# extended operation to update the password. -#pam_password exop - -# Redirect users to a URL or somesuch on password -# changes. -#pam_password_prohibit_message Please visit http://internal to change your password. - # Use backlinks for answering initgroups() #nss_initgroups backlink @@ -202,11 +121,7 @@ base dc=example,dc=net #nss_map_attribute homeDirectory msSFU30HomeDirectory #nss_map_attribute homeDirectory msSFUHomeDirectory #nss_map_objectclass posixGroup Group -#pam_login_attribute msSFU30Name -#pam_filter objectclass=User -#pam_password ad -# configure --enable-mssfu-schema is no longer supported. # Services for UNIX 2.0 mappings #nss_map_objectclass posixAccount User #nss_map_objectclass shadowAccount user @@ -217,9 +132,6 @@ base dc=example,dc=net #nss_map_attribute shadowLastChange pwdLastSet #nss_map_objectclass posixGroup Group #nss_map_attribute cn msSFUName -#pam_login_attribute msSFUName -#pam_filter objectclass=User -#pam_password ad # RFC 2307 (AD) mappings #nss_map_objectclass posixAccount user @@ -229,11 +141,7 @@ base dc=example,dc=net #nss_map_attribute shadowLastChange pwdLastSet #nss_map_objectclass posixGroup group #nss_map_attribute uniqueMember member -#pam_login_attribute sAMAccountName -#pam_filter objectclass=User -#pam_password ad -# configure --enable-authpassword is no longer supported # AuthPassword mappings #nss_map_attribute userPassword authPassword @@ -248,9 +156,6 @@ base dc=example,dc=net #nss_base_group ou=aixgroup,?one #nss_map_attribute cn groupName #nss_map_attribute uniqueMember member -#pam_login_attribute userName -#pam_filter objectclass=aixAccount -#pam_password clear # Netscape SDK LDAPS #ssl on |