Subversion Repositories configs

Rev

Details | Last modification | View Log | RSS feed

Rev Author Line No. Line
192 - 1 
[General]
2 
#Verbosity = 0
3 
# The following should be set to the local NFSv4 domain name
4 
# The default is the host's DNS domain name.
5 
#Domain = local.domain.edu
6 
 
7 
# In multi-domain environments, some NFS servers will append the identity
8 
# management domain to the owner and owner_group in lieu of a true NFSv4
9 
# domain.  This option can facilitate lookups in such environments.  If
10 
# set to a value other than "none", the nsswitch  plugin will first pass
11 
# the name to the password/group lookup function without stripping the
12 
# domain off.  If that mapping fails then the plugin will try again using
13 
# the old method (comparing the domain in the string to the Domain value,
14 
# stripping it if it matches, and passing the resulting short name to the
15 
# lookup function).  Valid values are "user", "group", "both", and
16 
# "none".  The default is "none".
17 
#No-Strip = none
18 
 
19 
# Winbind has a quirk whereby doing a group lookup in UPN format
20 
# (e.g. staff@americas.example.com) will cause the group to be
21 
# displayed prefixed with the full domain in uppercase
22 
# (e.g. AMERICAS.EXAMPLE.COM\staff) instead of in the familiar netbios
23 
# name format (e.g. AMERICAS\staff).  Setting this option to true
24 
# causes the name to be reformatted before passing it to the group
25 
# lookup function in order to work around this.  This setting is
26 
# ignored unless No-Strip is set to either "both" or "group".
27 
# The default is "false".
28 
#Reformat-Group = false
29 
 
30 
# The following is a comma-separated list of Kerberos realm
31 
# names that should be considered to be equivalent to the
32 
# local realm, such that <user>@REALM.A can be assumed to
33 
# be the same user as <user>@REALM.B
34 
# If not specified, the default local realm is the domain name,
35 
# which defaults to the host's DNS domain name,
36 
# translated to upper-case.
37 
# Note that if this value is specified, the local realm name
38 
# must be included in the list!
39 
#Local-Realms =
40 
 
41 
[Mapping]
42 
 
43 
#Nobody-User = nobody
44 
#Nobody-Group = nobody
45 
 
46 
[Translation]
47 
 
48 
# Translation Method is an comma-separated, ordered list of
49 
# translation methods that can be used.  Distributed methods
50 
# include "nsswitch", "umich_ldap", and "static".  Each method
51 
# is a dynamically loadable plugin library.
52 
# New methods may be defined and inserted in the list.
53 
# The default is "nsswitch".
54 
#Method = nsswitch
55 
 
56 
# Optional.  This is a comma-separated, ordered list of
57 
# translation methods to be used for translating GSS
58 
# authenticated names to ids.
59 
# If this option is omitted, the same methods as those
60 
# specified in "Method" are used.
61 
#GSS-Methods = <alternate method list for translating GSS names>
62 
 
63 
#-------------------------------------------------------------------#
64 
# The following are used only for the "static" Translation Method.
65 
#-------------------------------------------------------------------#
66 
[Static]
67 
 
68 
# A "static" list of GSS-Authenticated names to
69 
# local user name mappings
70 
 
71 
#someuser@REALM = localuser
72 
 
73 
 
74 
#-------------------------------------------------------------------#
75 
# The following are used only for the "umich_ldap" Translation Method.
76 
#-------------------------------------------------------------------#
77 
 
78 
[UMICH_SCHEMA]
79 
 
80 
# server information (REQUIRED)
81 
LDAP_server = ldap-server.local.domain.edu
82 
 
83 
# the default search base (REQUIRED)
84 
LDAP_base = dc=local,dc=domain,dc=edu
85 
 
86 
#-----------------------------------------------------------#
87 
# The remaining options have defaults (as shown)
88 
# and are therefore not required.
89 
#-----------------------------------------------------------#
90 
 
91 
# whether or not to perform canonicalization on the
92 
# name given as LDAP_server
93 
#LDAP_canonicalize_name = true
94 
 
95 
# absolute search base for (people) accounts
96 
#LDAP_people_base = <LDAP_base>
97 
 
98 
# absolute search base for groups
99 
#LDAP_group_base = <LDAP_base>
100 
 
101 
# Set to true to enable SSL - anything else is not enabled
102 
#LDAP_use_ssl = false
103 
 
104 
# You must specify a CA certificate location if you enable SSL
105 
#LDAP_ca_cert = /etc/ldapca.cert
106 
 
107 
# Objectclass mapping information
108 
 
109 
# Mapping for the person (account) object class
110 
#NFSv4_person_objectclass = NFSv4RemotePerson
111 
 
112 
# Mapping for the nfsv4name attribute the person object
113 
#NFSv4_name_attr = NFSv4Name
114 
 
115 
# Mapping for the UID number
116 
#NFSv4_uid_attr = UIDNumber
117 
 
118 
# Mapping for the GSSAPI Principal name
119 
#GSS_principal_attr = GSSAuthName
120 
 
121 
# Mapping for the account name attribute (usually uid)
122 
# The value for this attribute must match the value of
123 
# the group member attribute - NFSv4_member_attr
124 
#NFSv4_acctname_attr = uid
125 
 
126 
# Mapping for the group object class
127 
#NFSv4_group_objectclass = NFSv4RemoteGroup
128 
 
129 
# Mapping for the GID attribute
130 
#NFSv4_gid_attr = GIDNumber
131 
 
132 
# Mapping for the Group NFSv4 name
133 
#NFSv4_group_attr = NFSv4Name
134 
 
135 
# Mapping for the Group member attribute (usually memberUID)
136 
# The value of this attribute must match the value of NFSv4_acctname_attr
137 
#NFSv4_member_attr = memberUID