summaryrefslogtreecommitdiff
path: root/docs/manpages-3
diff options
context:
space:
mode:
authorSimo Sorce <idra@samba.org>2007-04-11 21:50:59 +0000
committerGerald W. Carter <jerry@samba.org>2008-04-23 08:47:31 -0500
commit621d4c0b4b4660e3e95cb901142ca865811081a8 (patch)
tree6b3299f1f1e908a480eeb98949324e982c9415d0 /docs/manpages-3
parent9729d43b53e7183f80c8b41dd8ed91e10421f71e (diff)
downloadsamba-621d4c0b4b4660e3e95cb901142ca865811081a8.tar.gz
samba-621d4c0b4b4660e3e95cb901142ca865811081a8.tar.bz2
samba-621d4c0b4b4660e3e95cb901142ca865811081a8.zip
Auth info for idmap_ldap
net idmap (This used to be commit 24fa52a63451678bb6f574d99a96e33eedc52ab1)
Diffstat (limited to 'docs/manpages-3')
-rw-r--r--docs/manpages-3/idmap_ldap.8.xml27
-rw-r--r--docs/manpages-3/net.8.xml29
2 files changed, 56 insertions, 0 deletions
diff --git a/docs/manpages-3/idmap_ldap.8.xml b/docs/manpages-3/idmap_ldap.8.xml
index 6794b49c79..173964f169 100644
--- a/docs/manpages-3/idmap_ldap.8.xml
+++ b/docs/manpages-3/idmap_ldap.8.xml
@@ -37,6 +37,14 @@
</varlistentry>
<varlistentry>
+ <term>ldap_user_dn = DN</term>
+ <listitem><para>
+ Defines the user DN to be used for authentication. If absent an
+ anonymous bind will be performed.
+ </para></listitem>
+ </varlistentry>
+
+ <varlistentry>
<term>ldap_url = ldap://server/</term>
<listitem><para>
Specifies the LDAP server to use when searching for existing
@@ -73,6 +81,14 @@
</varlistentry>
<varlistentry>
+ <term>ldap_user_dn = DN</term>
+ <listitem><para>
+ Defines the user DN to be used for authentication. If absent an
+ anonymous bind will be performed.
+ </para></listitem>
+ </varlistentry>
+
+ <varlistentry>
<term>ldap_url = ldap://server/</term>
<listitem><para>
Specifies the LDAP server to which modify/add/delete requests should
@@ -121,6 +137,17 @@
</programlisting>
</refsect1>
+<refsynopsisdiv>
+ <title>NOTE</title>
+
+ <para>In order to use authentication against ldap servers you may
+ need to provide a DN and a password. To avoid exposing the password
+ in plain text in the configuration file we store it into a security
+ store. The &quot;net idmap &quot; command is used to store a secret
+ for the DN specified in a specific idmap domain.
+ </para>
+</refsynopsisdiv>
+
<refsect1>
<title>AUTHOR</title>
diff --git a/docs/manpages-3/net.8.xml b/docs/manpages-3/net.8.xml
index 0e08a8e9d3..aaa5658d68 100644
--- a/docs/manpages-3/net.8.xml
+++ b/docs/manpages-3/net.8.xml
@@ -1147,6 +1147,35 @@ and groups (Domain Users, Domain Admins, Domain Guests) on the ldap tree.
</refsect2>
<refsect2>
+<title>IDMAP DUMP &lt;output file&gt;</title>
+
+<para>
+Dumps the mappings in the specified output file.
+</para>
+
+</refsect2>
+
+<refsect2>
+<title>IDMAP RESTORE [input file]</title>
+
+<para>
+Restore the mappings from the specified file or stdin.
+</para>
+
+</refsect2>
+
+<refsect2>
+<title>IDMAP SECRET &lt;DOMAIN&gt;|ALLOC &lt;secret&gt;</title>
+
+<para>
+Store a secret for the sepcified domain, used primarily for domains
+that use idmap_ldap as a backend. In this case the secret is used
+as the password for the user DN used to bind to the ldap server.
+</para>
+
+</refsect2>
+
+<refsect2>
<title>USERSHARE</title>
<para>Starting with version 3.0.23, a Samba server now supports the ability for