This module will install and configure a LDAP server. Samba utilisation is possible using special parameters
class { ldap:
uri => 'ldap.alkivi.fr',
base => 'dc=alkivi,dc=fr',
organization => 'Alkivi SAS',
commonname => 'alkivi',
domain_name => 'alkivi.fr',
ssl => true,
}This will do the typical install, configure and service management.
class { ldap:
organization => 'Alkivi SAS',
commonname => 'alkivi',
domain_name => 'alkivi.fr',
uri => 'ldap.alkivi.fr',
base => 'dc=alkivi,dc=fr',
ssl => true,
ssldir => '/etc/ssl/ldap',
sslcert => 'alkivi-ldap',
backend => 'HDB',
motd => true,
firewall => true,
}class { 'ldap::samba': }
class { 'ldap::smbldap':
sid => 'S-1-5-21-4095410810-3205272473-3842645657',
sambaDomain => 'home',
readbinddn => 'cn=admin,dc=home',
writebinddn => 'cn=admin,dc=home',
mailDomain => 'alkivi.fr',
suffix => 'dc=home',
usersdn => 'people',
computersdn => 'computers',
groupsdn => 'groups',
idmapdn => 'idmap',
}This will install smbldap tools and create default configuration, and populate your ldap directory with what is needed for domain control To obtain the sid, you can use net getlocalsid
class { 'ldap::pam':
base => 'dc=home',
base_passwd => 'ou=people',
base_shadow => 'ou=people',
base_group => 'ou=groups',
}
class { 'ldap::nss':
base => 'dc=home',
base_passwd => 'ou=people',
base_shadow => 'ou=people',
base_group => 'ou=groups',
}You have two type of host, basic one, or samba one according to which classes you want to include. Samba user is added with smbldap-tools while basic user is not.
ldap::sambauser{ 'toto':
email => '[email protected]',
uname => 'toto',
firstName => 'Toto',
lastName => 'Awesome',
create_local => false,
}
ldap::user{ 'toto':
email => '[email protected]',
uname => 'toto',
firstName => 'Toto',
lastName => 'Awesome',
create_local => false,
}- This module has been tested on Debian Wheezy, Squeeze.
All the code is freely distributable under the terms of the LGPLv3 license.
Need help ? [email protected]
Please log tickets and issues at our Github