From 16cbb628161960eb87d5b2e8bdd62842b8eb0723 Mon Sep 17 00:00:00 2001 From: Pierre Carrier Date: Wed, 14 Sep 2011 15:24:55 +0200 Subject: extras/m_ldapauth: CIDR-based whitelisting Offer host-based whitelisting in the ldap module. Used to trust clients from internal networks, whilst requiring authentication from "outsiders". --- docs/modules.conf.example | 10 ++++++++++ 1 file changed, 10 insertions(+) (limited to 'docs/modules.conf.example') diff --git a/docs/modules.conf.example b/docs/modules.conf.example index 8ae47d81f..21ee3d829 100644 --- a/docs/modules.conf.example +++ b/docs/modules.conf.example @@ -960,6 +960,8 @@ # bindauth="mysecretpass" # # verbose="yes"> # # # +# # +# # # The baserdn indicates the base DN to search in for users. Usually # # this is 'ou=People,dc=yourdomain,dc=yourtld'. # # # @@ -987,6 +989,14 @@ # allow anonymous searching in which case these two values do not # # need defining, otherwise they should be set similar to the examples # # above. # +# # +# ldapwhitelist indicates that clients connecting from an IP in the # +# provided CIDR do not need to authenticate against LDAP. It can be # +# repeated to whitelist multiple CIDRs. # + +# ldapwhitelist indicates that clients connecting from the associated # +# CIDR do to authenticate against LDAP. It can be used multiple # +# times. # #-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-# # LDAP oper configuration module: Adds the ability to authenticate # -- cgit v1.2.3