8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson Certain option defaults do not match their respective backend
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson provider defaults, these option names and IPA provider-specific
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson defaults are listed below:
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson <itemizedlist>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson krb5_validate = true
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson krb5_use_fast = try
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson krb5_canonicalize = true
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson </itemizedlist>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson <refsect2 id='ldap_general_modifications'>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson <itemizedlist>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_schema = ipa_v1
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_force_upper_case_realm = true
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_sasl_mech = GSSAPI
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_sasl_minssf = 56
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_account_expire_policy = ipa
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_use_tokengroups = true
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson </itemizedlist>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson <title>LDAP Provider - User options</title>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson <itemizedlist>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_user_member_of = memberOf
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_user_uuid = ipaUniqueID
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_user_ssh_public_key = ipaSshPubKey
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_user_auth_type = ipaUserAuthType
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson </itemizedlist>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson <title>LDAP Provider - Group options</title>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson <itemizedlist>
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_group_object_class = ipaUserGroup
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_group_object_class_alt = posixGroup
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_group_member = member
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_group_uuid = ipaUniqueID
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_group_objectsid = ipaNTSecurityIdentifier
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson ldap_group_external_member = ipaExternalMember
8caf7ba5005b3be5447311713ad2b58169f9d32fJustin Stephenson </itemizedlist>