1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
|
$NetBSD: patch-ah,v 1.2 2010/12/25 08:08:06 taca Exp $
- Fix paths for pkgsrc.
--- smbldap.conf.orig 2010-11-15 14:45:49.000000000 +0000
+++ smbldap.conf
@@ -57,7 +57,7 @@ sambaDomain="DOMSMB"
# Slave LDAP server
# Ex: slaveLDAP=127.0.0.1
# If not defined, parameter is set to "127.0.0.1"
-slaveLDAP="ldap.iallanis.info"
+slaveLDAP="ldap.example.info"
# Slave LDAP port
# If not defined, parameter is set to "389"
@@ -66,7 +66,7 @@ slavePort="389"
# Master LDAP server: needed for write operations
# Ex: masterLDAP=127.0.0.1
# If not defined, parameter is set to "127.0.0.1"
-masterLDAP="ldap.iallanis.info"
+masterLDAP="ldap.example.info"
# Master LDAP port
# If not defined, parameter is set to "389"
@@ -91,19 +91,19 @@ verify="require"
# CA certificate
# see "man Net::LDAP" in start_tls section for more details
-cafile="/etc/smbldap-tools/ca.pem"
+cafile="@PKG_SYSCONFDIR@/ca.pem"
# certificate to use to connect to the ldap server
# see "man Net::LDAP" in start_tls section for more details
-clientcert="/etc/smbldap-tools/smbldap-tools.iallanis.info.pem"
+clientcert="@PKG_SYSCONFDIR@/smbldap-tools.example.info.pem"
# key certificate to use to connect to the ldap server
# see "man Net::LDAP" in start_tls section for more details
-clientkey="/etc/smbldap-tools/smbldap-tools.iallanis.info.key"
+clientkey="@PKG_SYSCONFDIR@/smbldap-tools.example.info.key"
# LDAP Suffix
# Ex: suffix=dc=IDEALX,dc=ORG
-suffix="dc=iallanis,dc=info"
+suffix="dc=example,dc=info"
# Where are stored Users
# Ex: usersdn="ou=Users,dc=IDEALX,dc=ORG"
@@ -120,6 +120,14 @@ computersdn="ou=Computers,${suffix}"
# Warning: if 'suffix' is not set here, you must set the full dn for groupsdn
groupsdn="ou=Groups,${suffix}"
+# Groups objectclasses, as a space-separated list
+# Ex: groupsclasses="top posixGroup"
+groupsclasses="posixGroup groupOfNames"
+
+# Groups default member (rfc2307bis prohibit empty groups)
+# Ex: groupsdefaultmember="cn=default,${suffix}"
+groupsdefaultmember="cn=default,ou=roles,${suffix}"
+
# Where are stored Idmap entries (used if samba is a domain member server)
# Ex: groupsdn="ou=Idmap,dc=IDEALX,dc=ORG"
# Warning: if 'suffix' is not set here, you must set the full dn for idmapdn
@@ -150,8 +158,8 @@ crypt_salt_format="%s"
# Login defs
# Default Login Shell
-# Ex: userLoginShell="/bin/bash"
-userLoginShell="/bin/bash"
+# Ex: userLoginShell="/bin/csh"
+userLoginShell="/bin/csh"
# Home directory
# Ex: userHome="/home/%U"
@@ -209,7 +217,7 @@ userScript="logon.bat"
# Domain appended to the users "mail"-attribute
# when smbldap-useradd -M is used
# Ex: mailDomain="idealx.com"
-mailDomain="iallanis.info"
+mailDomain="example.info"
##############################################################################
#
@@ -220,12 +228,12 @@ mailDomain="iallanis.info"
# Allows not to use smbpasswd (if with_smbpasswd="0" in smbldap.conf) but
# prefer Crypt::SmbHash library
with_smbpasswd="0"
-smbpasswd="/usr/bin/smbpasswd"
+smbpasswd="@PREFIX@/bin/smbpasswd"
# Allows not to use slappasswd (if with_slappasswd="0" in smbldap.conf)
# but prefer Crypt:: libraries
with_slappasswd="0"
-slappasswd="/usr/sbin/slappasswd"
+slappasswd="@PREFIX@/sbin/slappasswd"
# comment out the following line to get rid of the default banner
# no_banner="1"
|