hosts:enclave:ldap
This is an old revision of the document!
Table of Contents
LDAP
Port(s) | 389 |
---|---|
Publicly Accessible? | No |
Upstream | OpenLDAP |
Directory server, holding user, alias, and group information.
We have addon schemas for vmail
and krb5
. Notably, we use passthrough authentication for all but the admin user, so that Kerberos is still our authoritative source.
Data directories
/var/db/ldap/
Configuration locations
Handled declaratively using Nix. Unfortunately, upstream doesn't have a module for the kerberos KDC, so we use a custom one.
hosts/enclave/ldap.1664238006.txt.gz ยท Last modified: 2022/09/27 00:20 by tcmal