mrc0mmand / rpms / openldap

Forked from rpms/openldap 3 years ago
Clone
3b9fe0
#
3b9fe0
# LDAP Defaults
3b9fe0
#
3b9fe0
3b9fe0
# See ldap.conf(5) for details
3b9fe0
# This file should be world readable but not world writable.
3b9fe0
3b9fe0
#BASE	dc=example,dc=com
3b9fe0
#URI	ldap://ldap.example.com ldap://ldap-master.example.com:666
3b9fe0
3b9fe0
#SIZELIMIT	12
3b9fe0
#TIMELIMIT	15
3b9fe0
#DEREF		never
3b9fe0
3b9fe0
# When no CA certificates are specified the Shared System Certificates
3b9fe0
# are in use. In order to have these available along with the ones specified
3b9fe0
# by TLS_CACERTDIR one has to include them explicitly:
3b9fe0
#TLS_CACERT	/etc/pki/tls/cert.pem
3b9fe0
3b9fe0
# System-wide Crypto Policies provide up to date cipher suite which should
3b9fe0
# be used unless one needs a finer grinded selection of ciphers. Hence, the
3b9fe0
# PROFILE=SYSTEM value represents the default behavior which is in place
3b9fe0
# when no explicit setting is used. (see openssl-ciphers(1) for more info)
3b9fe0
#TLS_CIPHER_SUITE PROFILE=SYSTEM
3b9fe0
3b9fe0
# Turning this off breaks GSSAPI used with krb5 when rdns = false
3b9fe0
SASL_NOCANON	on
3b9fe0