source: trunk/server/doc/389-ds-enable-ssl-and-kerberos.diff @ 1542

Last change on this file since 1542 was 1296, checked in by mitchb, 15 years ago
fedora-ds is now 389-ds - "People like alphanumeric digits"
File size: 1.7 KB
RevLine 
[861]1--- o-f.config.ldif     2008-07-05 06:24:48.000000000 -0400
2+++ b-m.config.ldif     2008-07-05 06:25:34.000000000 -0400
3@@ -123,7 +123,7 @@
4 passwordMaxFailure: 3
5 nsslapd-accesslog: /var/log/dirsrv/slapd-scripts/access
6 nsslapd-lastmod: on
7-nsslapd-security: off
8+nsslapd-security: on
9 passwordMaxAge: 8640000
10 nsslapd-auditlog-logrotationtimeunit: day
11 passwordResetFailureCount: 600
12@@ -180,7 +180,7 @@
13 nsslapd-referralmode:
14 nsslapd-maxdescriptors: 1024
15 nsslapd-conntablesize: 1024
16-nsslapd-sslclientauth: off
17+nsslapd-sslclientauth: allowed
18 nsslapd-config: cn=config
19 nsslapd-instancedir:
20 nsslapd-schemadir: /etc/dirsrv/slapd-scripts/schema
21@@ -217,7 +217,8 @@
22 nsSSLSessionTimeout: 0
23 nsSSLClientAuth: allowed
24 nsSSL2: off
25-nsSSL3: off
26+nsSSL3: on
27+nsSSL3Ciphers: +rsa_rc4_128_md5
28 nsSSLSupportedCiphers: SSL3::rc4::RC4::MD5::128
29 nsSSLSupportedCiphers: SSL3::rc4export::RC4::MD5::128
30 nsSSLSupportedCiphers: SSL3::rc2::RC2::MD5::128
31@@ -315,6 +316,15 @@
32 objectClass: extensibleObject
33 cn: uniqueid generator
34 
35+# RSA, encryption, config
36+dn: cn=RSA,cn=encryption,cn=config
37+objectClass: top
38+objectClass: nsEncryptionModule
39+cn: RSA
40+nsSSLPersonalitySSL: ldap/better-mousetrap
41+nsSSLToken: internal (software)
42+nsSSLActivation: on
43+
44 # options, features, config
45 dn: cn=options,cn=features,cn=config
46 objectClass: top
47@@ -1264,3 +1274,12 @@
48 nsslapd-pluginVendor: Fedora Project
49 nsslapd-pluginDescription: Salted Secure Hashing Algorithm (SSHA512)
50 
51+# mapname, mapping, sasl, config
52+dn: cn=mapname,cn=mapping,cn=sasl,cn=config
53+objectClass: top
54+objectClass: nsSaslMapping
55+cn: mapname
56+nsSaslMapRegexString: \(.*\)
57+nsSaslMapBaseDNTemplate: uid=\1,ou=People,dc=scripts,dc=mit,dc=edu
58+nsSaslMapFilterTemplate: (objectClass=posixAccount)
59+
Note: See TracBrowser for help on using the repository browser.