summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMichael Adam <obnox@samba.org>2011-06-01 01:19:50 +0200
committerMichael Adam <obnox@samba.org>2011-06-01 02:53:32 +0200
commit697d5c08acc85944df8ca9f26ab3f58bb3e7764a (patch)
tree1e051f84bddb29f9bad57c526b1adf90a3bf49ce
parent74cd06b3dff42bda4dd0a0f3fd250a975d0258ed (diff)
downloadsamba-697d5c08acc85944df8ca9f26ab3f58bb3e7764a.tar.gz
samba-697d5c08acc85944df8ca9f26ab3f58bb3e7764a.tar.bz2
samba-697d5c08acc85944df8ca9f26ab3f58bb3e7764a.zip
s3:doc: update the ldap_user_dn documentation in the idmap_ldap manpage
also extend the example with ldap_user_dn. Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Wed Jun 1 02:53:32 CEST 2011 on sn-devel-104
-rw-r--r--docs-xml/manpages-3/idmap_ldap.8.xml14
1 files changed, 11 insertions, 3 deletions
diff --git a/docs-xml/manpages-3/idmap_ldap.8.xml b/docs-xml/manpages-3/idmap_ldap.8.xml
index e77aec0915..2c0fcfd17c 100644
--- a/docs-xml/manpages-3/idmap_ldap.8.xml
+++ b/docs-xml/manpages-3/idmap_ldap.8.xml
@@ -48,8 +48,14 @@
<varlistentry>
<term>ldap_user_dn = DN</term>
<listitem><para>
- Defines the user DN to be used for authentication. If absent an
- anonymous bind will be performed.
+ Defines the user DN to be used for authentication.
+ The secret for authenticating this user should be
+ stored with net idmap secret
+ (see <citerefentry><refentrytitle>net</refentrytitle>
+ <manvolnum>8</manvolnum></citerefentry>).
+ If absent, the ldap credentials from the ldap passdb configuration
+ are used, and if these are also absent, an anonymous
+ bind will be performed as last fallback.
</para></listitem>
</varlistentry>
@@ -78,7 +84,8 @@
<para>
The following example shows how an ldap directory is used as the
default idmap backend. It also configures the idmap range and base
- directory suffix.
+ directory suffix. The secret for the ldap_user_dn has to be set with
+ &quot;net idmap secret '*' password&quot;.
</para>
<programlisting>
@@ -87,6 +94,7 @@
idmap config * : range = 1000000-1999999
idmap config * : ldap_url = ldap://localhost/
idmap config * : ldap_base_dn = ou=idmap,dc=example,dc=com
+ idmap config * : ldap_user_dn = cn=idmap_admin,dc=example,dc=com
</programlisting>
<para>