hosts:enclave:ldap
This is an old revision of the document!
Table of Contents
LDAP
| Port(s) | 389 |
|---|---|
| Publicly Accessible? | No |
| Upstream | OpenLDAP |
Directory server, holding user, alias, and group information.
We have addon schemas for vmail and krb5. Notably, we use passthrough authentication for all but the admin user, so that Kerberos is still our authoritative source.
Data directories
/var/db/ldap/
Configuration locations
Handled declaratively using Nix. Unfortunately, upstream doesn't have a module for the kerberos KDC, so we use a custom one.
hosts/enclave/ldap.1664238006.txt.gz ยท Last modified: 2022/09/27 00:20 by tcmal