# | |
# Licensed to the Apache Software Foundation (ASF) under one | |
# or more contributor license agreements. See the NOTICE file | |
# distributed with this work for additional information | |
# regarding copyright ownership. The ASF licenses this file | |
# to you under the Apache License, Version 2.0 (the | |
# "License"); you may not use this file except in compliance | |
# with the License. You may obtain a copy of the License at | |
# | |
# http://www.apache.org/licenses/LICENSE-2.0 | |
# | |
# Unless required by applicable law or agreed to in writing, | |
# software distributed under the License is distributed on an | |
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY | |
# KIND, either express or implied. See the License for the | |
# specific language governing permissions and limitations | |
# under the License. | |
# | |
#ConfigurationFile for LDAP Auth | |
#ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM and point to this file | |
#o.becherer,14.01.2009 | |
#LDAP URL | |
# This is the URL used to access your LDAP server. | |
# if you want to use "ldaps://" links, please be aware that you need to import your CA certificate | |
# to a java keystore and add the -Djavax.net.ssl.keyStore, -Djavax.net.ssl.keyStorePassword, | |
# -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword parameters to your | |
# JAVA_OPT environment | |
ldap_conn_host=dc2.medint.local | |
ldap_conn_port=389 | |
ldap_conn_secure=false | |
# Login distinguished name (DN) for Authentication on LDAP Server - keep empty if not required | |
# Use full qualified LDAP DN | |
ldap_admin_dn=CN=dummy,OU=Company,DC=medint,DC=local | |
# Loginpass for Authentication on LDAP Server - keep empty if not required | |
ldap_passwd=dummy07 | |
# base to search for userdata(of user, that wants to login) | |
ldap_search_base=OU=Company,DC=medint,DC=local | |
# Fieldnames (can differ between Ldap servers) | |
ldap_search_query=(uid=%s) | |
# the scope of the search might be: OBJECT, ONELEVEL, SUBTREE | |
ldap_search_scope=ONELEVEL | |
# Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND) | |
# When using SIMPLEBIND a simple bind is performed on the LDAP server to check user authentication | |
# When using NONE, the Ldap server is not used for authentication | |
ldap_auth_type=SIMPLEBIND | |
# userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND | |
# might be used to get provisionningDn in case ldap_auth_type=NONE | |
ldap_userdn_format=uid=%s,OU=Company,DC=medint,DC=local | |
# Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE) | |
ldap_provisionning=AUTOCREATE | |
# Ldap deref mode (never, searching, finding, always) | |
ldap_deref_mode=always | |
# Set this to 'true' if you want to use admin_dn to get user attributes | |
# If any other value is set, user_dn will be used | |
ldap_use_admin_to_get_attrs=true | |
# Ldap-password synchronization to OM DB | |
# Set this to 'true' if you want OM to synchronize the user Ldap-password to OM's internal DB | |
# If you want to disable the feature, set this to any other string. | |
# Defautl value is 'true' | |
ldap_sync_password_to_om=true | |
# Ldap group mode (NONE, ATTRIBUTE, QUERY) | |
# NONE means group associations will be ignored | |
# ATTRIBUTE means group associations will be taken from 'ldap_group_attr' attribute (M$ AD mode) | |
# QUERY means group associations will be taken as a result of 'ldap_group_query' query | |
ldap_group_mode=NONE | |
ldap_group_query=(&(memberUid=%s)(objectClass=posixGroup)) | |
# Ldap user attributes mapping | |
# Set the following internal OM user attributes to their corresponding Ldap-attribute | |
ldap_user_attr_lastname=sn | |
ldap_user_attr_firstname=givenName | |
ldap_user_attr_mail=mail | |
ldap_user_attr_street=streetAddress | |
ldap_user_attr_additionalname=description | |
ldap_user_attr_fax=facsimileTelephoneNumber | |
ldap_user_attr_zip=postalCode | |
ldap_user_attr_country=co | |
ldap_user_attr_town=l | |
ldap_user_attr_phone=telephoneNumber | |
ldap_group_attr=memberOf | |
# optional, only absolute URLs make sense | |
#ldap_user_picture_uri=picture_uri | |
# optional | |
# the timezone has to match any timezone available in Java, otherwise the timezone defined in the value of | |
# the conf_key "default.timezone" in OpenMeetings "configurations" table | |
#ldap_user_timezone=timezone | |
# Ldap ignore upper/lower case, convert all input to lower case | |
ldap_use_lower_case=false |