diff options
author | Timothy Pearson <kb9vqf@pearsoncomputing.net> | 2012-06-04 02:43:34 -0500 |
---|---|---|
committer | Timothy Pearson <kb9vqf@pearsoncomputing.net> | 2012-06-04 02:43:34 -0500 |
commit | ffa65c885b78a8d783f9e8cd51cf7c0b751207f9 (patch) | |
tree | 5265da262e38753ddad75c7b9a98fb9119dd9215 /confskel/sasl | |
parent | c39d52d4c9425c45394105bebdd6f2fac29569ee (diff) | |
download | kcmldapcontroller-ffa65c885b78a8d783f9e8cd51cf7c0b751207f9.tar.gz kcmldapcontroller-ffa65c885b78a8d783f9e8cd51cf7c0b751207f9.zip |
New realm now functions almost fully
Diffstat (limited to 'confskel/sasl')
-rw-r--r-- | confskel/sasl/saslauthd.defaults | 54 | ||||
-rw-r--r-- | confskel/sasl/slapd.conf | 4 |
2 files changed, 58 insertions, 0 deletions
diff --git a/confskel/sasl/saslauthd.defaults b/confskel/sasl/saslauthd.defaults new file mode 100644 index 0000000..c6277d6 --- /dev/null +++ b/confskel/sasl/saslauthd.defaults @@ -0,0 +1,54 @@ +# +# TDE settings for saslauthd daemon +# + +# Should saslauthd run automatically on startup? (default: no) +START=yes + +# Description of this saslauthd instance. Recommended. +# (suggestion: SASL Authentication Daemon) +DESC="SASL Authentication Daemon" + +# Short name of this saslauthd instance. Strongly recommended. +# (suggestion: saslauthd) +NAME="saslauthd" + +# Which authentication mechanisms should saslauthd use? (default: pam) +# +# Available options in this Debian package: +# getpwent -- use the getpwent() library function +# kerberos5 -- use Kerberos 5 +# pam -- use PAM +# rimap -- use a remote IMAP server +# shadow -- use the local shadow password file +# sasldb -- use the local sasldb database file +# ldap -- use LDAP (configuration is in /etc/saslauthd.conf) +# +# Only one option may be used at a time. See the saslauthd man page +# for more information. +# +# Example: MECHANISMS="pam" +MECHANISMS="kerberos5" + +# Additional options for this mechanism. (default: none) +# See the saslauthd man page for information about mech-specific options. +MECH_OPTIONS="" + +# How many saslauthd processes should we run? (default: 5) +# A value of 0 will fork a new process for each connection. +THREADS=5 + +# Other options (default: -c -m /var/run/saslauthd) +# Note: You MUST specify the -m option or saslauthd won't run! +# +# WARNING: DO NOT SPECIFY THE -d OPTION. +# The -d option will cause saslauthd to run in the foreground instead of as +# a daemon. This will PREVENT YOUR SYSTEM FROM BOOTING PROPERLY. If you wish +# to run saslauthd in debug mode, please run it by hand to be safe. +# +# See /usr/share/doc/sasl2-bin/README.Debian for Debian-specific information. +# See the saslauthd man page and the output of 'saslauthd -h' for general +# information about these options. +# +# Example for postfix users: "-c -m /var/spool/postfix/var/run/saslauthd" +OPTIONS="-c -m /var/run/saslauthd" diff --git a/confskel/sasl/slapd.conf b/confskel/sasl/slapd.conf new file mode 100644 index 0000000..f89c483 --- /dev/null +++ b/confskel/sasl/slapd.conf @@ -0,0 +1,4 @@ +#mech_list: GSSAPI EXTERNAL +#mech_list: PLAIN LOGIN GSSAPI EXTERNAL +pwcheck_method: saslauthd +saslauthd_path: /var/run/saslauthd/mux |