/var/lib/ldap-account-manager/config/windows_samba4.conf.sample is in ldap-account-manager 6.2-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 | # LDAP Account Manager configuration
#
# Please do not modify this file manually. The configuration can be done completely by the LAM GUI.
#
###################################################################################################
# server address (e.g. ldap://localhost:389 or ldaps://localhost:636)
ServerURL: ldap://pdc.my-domain.com
# list of users who are allowed to use LDAP Account Manager
# names have to be seperated by semicolons
# e.g. admins: cn=admin,dc=yourdomain,dc=org;cn=root,dc=yourdomain,dc=org
Admins: cn=Administrator,cn=users,dc=my-domain,dc=com
# password to change these preferences via webfrontend (default: lam)
Passwd: lam
# suffix of tree view
# e.g. dc=yourdomain,dc=org
treesuffix: dc=my-domain,dc=com
# default language (a line from config/language)
defaultLanguage: en_GB.utf8
# Path to external Script
scriptPath:
# Server of external Script
scriptServer:
# Access rights for home directories
scriptRights: 750
# Number of minutes LAM caches LDAP searches.
cachetimeout: 5
# LDAP search limit.
searchLimit: 0
# Module settings
modules: posixAccount_minUID: 10000
modules: posixAccount_maxUID: 30000
modules: posixAccount_minMachine: 50000
modules: posixAccount_maxMachine: 60000
modules: posixGroup_minGID: 10000
modules: posixGroup_maxGID: 20000
modules: posixGroup_pwdHash: SSHA
modules: posixAccount_pwdHash: SSHA
# List of active account types.
activeTypes: user,group,host
types: suffix_user: dc=my-domain,dc=com
types: attr_user: #cn;#givenName;#sn;#mail
types: modules_user: windowsUser
types: suffix_group: dc=my-domain,dc=com
types: attr_group: #cn;#member;#description
types: modules_group: windowsGroup
types: suffix_host: CN=Computers,dc=my-domain,dc=com
types: attr_host: #cn;#description;#location
types: modules_host: windowsHost
types: suffix_smbDomain: dc=my-domain,dc=com
types: attr_smbDomain: sambaDomainName:Domain name;sambaSID:Domain SID
types: modules_smbDomain: sambaDomain
# Password mail subject
lamProMailSubject: Your password was reset
# Password mail text
lamProMailText: Dear @@givenName@@ @@sn@@,+::++::+your password was reset to: @@newPassword@@+::++::++::+Best regards+::++::+deskside support+::+
# enable TLS encryption
useTLS: no
# Access level for this profile.
accessLevel: 100
# Login method.
loginMethod: list
# Search suffix for LAM login.
loginSearchSuffix: dc=yourdomain,dc=org
# Search filter for LAM login.
loginSearchFilter: uid=%USER%
# Bind DN for login search.
loginSearchDN:
# Bind password for login search.
loginSearchPassword:
# HTTP authentication for LAM login.
httpAuthentication: false
# Password mail from
lamProMailFrom:
# Password mail reply-to
lamProMailReplyTo:
# Password mail is HTML
lamProMailIsHTML: false
types: filter_user:
types: filter_group:
types: filter_host:
types: filter_smbDomain:
types: hidden_group:
types: hidden_host:
types: hidden_smbDomain:
tools: tool_hide_toolServerInformation: false
tools: tool_hide_toolFileUpload: false
tools: tool_hide_toolPDFEditor: false
tools: tool_hide_toolOUEditor: false
tools: tool_hide_toolProfileEditor: false
tools: tool_hide_toolTests: false
tools: tool_hide_toolSchemaBrowser: false
modules: windowsGroup_hidemail: false
types: hidden_user:
modules: customScripts_scripts: user postModify echo $INFO.userPasswordClearText$
modules: customScripts_containsHTML: false
modules: customScripts_hideCommand: false
modules: zarafa_schema: ad
modules: zarafaUser_hideQuotaOverride: false
modules: zarafaUser_hideQuotaWarn: false
modules: zarafaUser_hideQuotaSoft: false
modules: zarafaUser_hideQuotaHard: false
modules: zarafaUser_hideSendAsPrivilege: false
modules: zarafaUser_hideSharedStoreOnly: false
modules: zarafaUser_hideResourceType: false
modules: zarafaUser_hideResourceCapacity: false
modules: zarafaUser_hideAccount: false
modules: zarafaUser_hideZarafaUserArchiveServers: false
modules: zarafaUser_hideUserServer: false
modules: zarafaUser_hideFeatures: false
modules: zarafaUser_hideAliases: false
modules: zarafaUser_sendAsAttribute: dn
modules: zarafaGroup_hideSendAsPrivilege: false
modules: zarafaServer_hideProxyURL: false
types: hidden_zarafaAddressListType:
types: suffix_zarafaAddressListType: OU=zarafa,DC=samba4,DC=test
types: filter_zarafaAddressListType:
types: attr_zarafaAddressListType: #cn;#zarafaBase;#zarafaFilter
types: modules_zarafaAddressListType: zarafaAddressList
types: hidden_zarafaDynamicGroupType:
types: suffix_zarafaDynamicGroupType: OU=zarafa,DC=samba4,DC=test
types: filter_zarafaDynamicGroupType:
types: attr_zarafaDynamicGroupType: #cn;#mail;#zarafaaliases;#zarafaBase;#zarafaFilter
types: modules_zarafaDynamicGroupType: zarafaDynamicGroup
modules: windowsGroup_hideotherMailbox: false
types: hideNewButton_user:
types: hideDeleteButton_user:
types: hideNewButton_group:
types: hideDeleteButton_group:
types: hideNewButton_host:
types: hideDeleteButton_host:
types: hideNewButton_zarafaDynamicGroupType:
types: hideDeleteButton_zarafaDynamicGroupType:
types: hideNewButton_zarafaAddressListType:
types: hideDeleteButton_zarafaAddressListType:
modules: windowsGroup_hidemanagedBy: true
modules: passwordSelfReset_questions: Bla1?+::+Bla2?
modules: posixGroup_gidGenerator: range
modules: posixGroup_sambaIDPoolDN:
modules: posixGroup_gidCheckSuffix:
modules: posixAccount_uidGeneratorUsers: range
modules: posixAccount_sambaIDPoolDNUsers:
modules: posixAccount_uidCheckSuffixUser:
modules: posixAccount_shells: /bin/bash+::+/bin/csh+::+/bin/dash+::+/bin/false+::+/bin/ksh+::+/bin/sh
modules: posixAccount_hidegecos: false
modules: posixAccount_primaryGroupAsSecondary: false
modules: posixAccount_userNameSuggestion: @givenname@%sn%
modules: windowsUser_domains: my-domain.com
modules: windowsUser_hidesAMAccountName: false
tools: tool_hide_toolMultiEdit: false
# follow referrals
followReferrals: false
# paged results
pagedResults: false
# Allow alternate address
lamProMailAllowAlternateAddress: true
modules: windowsGroup_hidemsSFU30Name: true
modules: windowsGroup_hidemsSFU30NisDomain: true
modules: windowsUser_hidemsSFU30Name: true
modules: windowsUser_hidemsSFU30NisDomain: true
types: customLabel_user:
types: customLabel_group:
types: customLabel_host:
types: customLabel_zarafaDynamicGroupType:
types: customLabel_zarafaAddressListType:
types: readOnly_user:
types: readOnly_group:
types: readOnly_host:
types: readOnly_zarafaAddressListType:
|