File: templates

package info (click to toggle)
libnss-ldap 265-6
  • links: PTS, VCS
  • area: main
  • in suites: bullseye
  • size: 2,628 kB
  • sloc: ansic: 16,912; sh: 3,357; perl: 284; makefile: 105
file content (117 lines) | stat: -rw-r--r-- 4,257 bytes parent folder | download | duplicates (8) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
 
Template: libnss-ldap/confperm
Type: boolean
Default: false
_Description: Make the configuration file readable/writeable by its owner only?
 If you use passwords in your libnss-ldap configuration, it is usually a
 good idea to have the configuration set with mode 0600 (readable and
 writable only by the file's owner).
 .
 Note: As a sanity check, libnss-ldap will check if you have nscd installed
 and will only set the mode to 0600 if nscd is present.

Template: libnss-ldap/nsswitch
Type: note
_Description: nsswitch.conf not managed automatically
 For the libnss-ldap package to work, you need to modify your
 /etc/nsswitch.conf to use the "ldap" datasource.  There is an example
 file at /usr/share/doc/libnss-ldap/examples/nsswitch.ldap which can
 be used as an example for your nsswitch setup, or it can be copied
 over your current setup.
 .
 Also, before removing this package, it is wise to remove the "ldap" entries
 from nsswitch.conf to keep basic services functioning.

Template: shared/ldapns/base-dn
Type: string
Default: dc=example,dc=net
_Description: Distinguished name of the search base:
 Please enter the distinguished name of the LDAP search base.  Many sites
 use the components of their domain names for this purpose.  For example,
 the domain "example.net" would use "dc=example,dc=net" as the
 distinguished name of the search base.

Template: libnss-ldap/dblogin
Type: boolean
Default: false
_Description: Does the LDAP database require login?
 Choose this option if you can't retrieve entries from
 the database without logging in.
 .
 Note: Under a normal setup, this is not needed.

Template: libnss-ldap/override
Type: boolean
Default: true
_Description: Automatically update libnss-ldap's configuration file?
 The libnss-ldap package may use debconf for its configuration.
 .
 If you choose this option, the configuration file will be prepended
 with "###DEBCONF###"; you can disable the debconf updates by removing
 that line.
 .
 All new installations will use this option by default.

Template: libnss-ldap/binddn
Type: string
Default: cn=proxyuser,dc=example,dc=net
_Description: Unprivileged database user:
 Please enter the name of the account that will be used to log in to the LDAP
 database.

Template: libnss-ldap/bindpw
Type: password
_Description: Password for database login account:
 Please enter the password that will be used to log in to the LDAP database.

Template: shared/ldapns/ldap_version
Type: select
Choices: 3, 2
Default: 3
_Description: LDAP version to use:
 Please enter which version of the LDAP protocol should be used by
 ldapns.  It is usually a good idea to set this to the highest
 available version number.

Template: shared/ldapns/ldap-server
Type: string
Default: ldap://127.0.0.1/
_Description: LDAP server Uniform Resource Identifier:
 Please enter the URI of the LDAP server used. This is a string in the
 form ldap://<hostname or IP>:<port>/ . ldaps:// or ldapi:// can also
 be used. The port number is optional.
 .
 Note: It is usually a good idea to use an IP address; this reduces risks
 of failure in the event name service is unavailable.

Template: libnss-ldap/dbrootlogin
Type: boolean
Default: true
_Description: Special LDAP privileges for root?
 This option will allow tools that perform requests to the nss system
 with libnss-ldap as backend to return more information when called
 as root.
 .
 If you are using NFS mounted /etc or any other custom setup, you should
 disable this.

Template: libnss-ldap/rootbinddn
Type: string
Default: cn=manager,dc=example,dc=net
_Description: LDAP account for root:
 Please choose which account will be used for nss requests with root
 privileges.
 .
 Note: For this to work the account needs permission to access the
 attributes in the LDAP directory that are related to the users' shadow
 entries as well as users' and groups' passwords.

Template: libnss-ldap/rootbindpw
Type: password
_Description: LDAP root account password:
 Please enter the password to use when libnss-ldap tries to
 login to the LDAP directory using the LDAP account for root.
 .
 The password will be stored in a separate file /etc/libnss-ldap.secret
 which will be made readable to root only.
 .
 Entering an empty password will re-use the old password.