TARDIS Project

User Tools

Site Tools

Trace:
hosts:virtual_machines:enclave:ldap

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
hosts:virtual_machines:enclave:ldap [2023/02/21 01:32] – created netboxhosts:virtual_machines:enclave:ldap [2023/08/30 17:52] (current) tcmal
Line 1: Line 1:
 [[meta:autogen:start|​]] [[meta:autogen:start|​]]
 +===== LDAP =====
 ^ Name | LDAP | ^ Name | LDAP |
 ^ Ports | 389 (tcp) | ^ Ports | 389 (tcp) |
Line 5: Line 6:
 [[meta:autogen:end|​]] [[meta:autogen:end|​]]
  
 +[[https://www.openldap.org/|OpenLDAP]] server, holding user, alias, and group information.
 +
 +We have addon schemas for ''vmail'' and ''krb5''. Notably, we use [[https://ltb-project.org/documentation/sasl_delegation.html|passthrough authentication]] for all but the admin user, so that [[hosts:virtual_machines:enclave:mit_kerberos_kdc|Kerberos]] is still our authoritative source.
 +
 +===== Data directories =====
 +
 +  * ''/var/db/ldap/''
 +
 +===== Configuration locations =====
 +
 +Handled declaratively using [[https://git.tardisproject.uk/tardis/nix/-/tree/main/profiles/services/ldap|Nix]].
hosts/virtual_machines/enclave/ldap.1676943167.txt.gz · Last modified: 2023/02/21 01:32 by netbox