Systems/Services/LDAP

From PS:1 Wiki Dev
Jump to navigationJump to search

{{ 

 {{#switch:
 {{#if: 
   | 
   | {{#if: 
     | 
       {{#ifeq:|
       | talk
       |  
       }}
     | 
       {{#ifeq:|talk
       | talk
       |  
       }}
     }}
   }}

| main | = ambox | talk = tmbox | user = ombox | project = ombox | file | image = imbox | mediawiki = ombox | template = ombox | help = ombox | category = cmbox | book = ombox | extension = ombox | other | #default = ombox

}} | type = warning | image = | imageright = | class = | style = | textstyle = | text = This information is out of date. Up-to-date IT information can be found here | small = | smallimage = | smallimageright = | smalltext = | subst = | date = | name = }}

PS1 LDAP

Client config

BASE    dc=ad,dc=pumpingstationone,dc=org
URI     ldap://bob.ad.pumpingstationone.org ldap://dc01.ad.pumpingstationone.org

SSL starttls
TLS_CACERT /usr/local/etc/trusted.pem
TLS_CHECKPEER yes
TLS_REQCERT require
SASL_MECH GSSAPI
use_sasl yes
#SIZELIMIT      12
#TIMELIMIT      15
#DEREF          never


Public LDAP Server

There is a public ldap server used for Auth on external services. This is forwarded from space.pumpingstationone.org:389 to the internal LDAP servers.

Service that use this:

  • Page.ly - Blog


This service runs a self signed SSL cert with the CN space.pumpingstationone.org.

Retrieved from "https://wiki-dev.pumpingstationone.org/mediawiki/index.php?title=Systems/Services/LDAP&oldid=42828"