zarb-ml/mageia-sysadm/2010-November/000575.html


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
 <HEAD>
   <TITLE> [Mageia-sysadm] [269] - fix templates ( again )
   </TITLE>
   <LINK REL="Index" HREF="index.html" >
   <LINK REL="made" HREF="mailto:mageia-sysadm%40mageia.org?Subject=Re%3A%20%5BMageia-sysadm%5D%20%5B269%5D%20-%20fix%20templates%20%28%20again%20%29&In-Reply-To=%3C20101117162542.6964A3FC09%40valstar.mageia.org%3E">
   <META NAME="robots" CONTENT="index,nofollow">
   <META http-equiv="Content-Type" content="text/html; charset=us-ascii">
   <LINK REL="Previous"  HREF="000574.html">
   <LINK REL="Next"  HREF="000576.html">
 </HEAD>
 <BODY BGCOLOR="#ffffff">
   <H1>[Mageia-sysadm] [269] - fix templates ( again )</H1>
    <B>root at mageia.org</B> 
    <A HREF="mailto:mageia-sysadm%40mageia.org?Subject=Re%3A%20%5BMageia-sysadm%5D%20%5B269%5D%20-%20fix%20templates%20%28%20again%20%29&In-Reply-To=%3C20101117162542.6964A3FC09%40valstar.mageia.org%3E"
       TITLE="[Mageia-sysadm] [269] - fix templates ( again )">root at mageia.org
       </A><BR>
    <I>Wed Nov 17 17:25:42 CET 2010</I>
    <P><UL>
        <LI>Previous message: <A HREF="000574.html">[Mageia-sysadm] Puppet Report for alamut.mageia.org
</A></li>
        <LI>Next message: <A HREF="000576.html">[Mageia-sysadm] Puppet Report for alamut.mageia.org
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#575">[ date ]</a>
              <a href="thread.html#575">[ thread ]</a>
              <a href="subject.html#575">[ subject ]</a>
              <a href="author.html#575">[ author ]</a>
         </LI>
       </UL>
    <HR>  
<!--beginarticle-->
<PRE>Revision: 269
Author:   misc
Date:     2010-11-17 17:25:42 +0100 (Wed, 17 Nov 2010)
Log Message:
-----------
- fix templates ( again )
- add ldap.conf  

Modified Paths:
--------------
    puppet/modules/pam/manifests/init.pp

Added Paths:
-----------
    puppet/modules/pam/templates/ldap.conf

Modified: puppet/modules/pam/manifests/init.pp
===================================================================
--- puppet/modules/pam/manifests/init.pp	2010-11-17 15:58:10 UTC (rev 268)
+++ puppet/modules/pam/manifests/init.pp	2010-11-17 16:25:42 UTC (rev 269)
@@ -18,8 +18,15 @@
          owner =&gt; root,
          group =&gt; root,
          mode =&gt; 644,
-         content =&gt; template(&quot;pam/system-auth&quot;)
+         content =&gt; template(&quot;pam/nsswitch.conf&quot;)
       }
+      file { &quot;ldap.conf&quot;:
+         path =&gt; &quot;/etc/ldap.conf&quot;,
+         owner =&gt; root,
+         group =&gt; root,
+         mode =&gt; 644,
+         content =&gt; template(&quot;pam/ldap.conf&quot;)
+      }
   } 
   
   # for server where only admin can connect

Added: puppet/modules/pam/templates/ldap.conf
===================================================================
--- puppet/modules/pam/templates/ldap.conf	                        (rev 0)
+++ puppet/modules/pam/templates/ldap.conf	2010-11-17 16:25:42 UTC (rev 269)
@@ -0,0 +1,22 @@
+&lt;%
+dc_suffix = 'dc=' + domain.gsub('.',',dc=')
+%&gt;
+
+uri <A HREF="ldap://ldap.&lt;%=">ldap://ldap.&lt;%=</A> domain %&gt;
+base &lt;%= dc_suffix %&gt;
+pam_lookup_policy no
+pam_password exop
+nss_base_passwd ou=People,&lt;%= dc_suffix %&gt;?one
+nss_base_shadow ou=People,&lt;%= dc_suffix %&gt;?one
+nss_base_group  ou=Group,&lt;%= dc_suffix %&gt;?one
+
+nss_schema rfc2307bis
+nss_map_attribute uniqueMember member
+sudoers_base ou=sudoers,&lt;%= dc_suffix %&gt;
+#sudoers_debug 2
+
+&lt;% if access_class = 'commiters' %&gt;
+# for restricted access
+nss_override_attribute_value loginShell /usr/local/bin/sv_membersh.pl
+&lt;% end %&gt;
+
-------------- next part --------------
An HTML attachment was scrubbed...
URL: &lt;/pipermail/mageia-sysadm/attachments/20101117/9b32b042/attachment.html&gt;
</PRE>


<!--endarticle-->
    <HR>
    <P><UL>
        <!--threads-->
	<LI>Previous message: <A HREF="000574.html">[Mageia-sysadm] Puppet Report for alamut.mageia.org
</A></li>
	<LI>Next message: <A HREF="000576.html">[Mageia-sysadm] Puppet Report for alamut.mageia.org
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#575">[ date ]</a>
              <a href="thread.html#575">[ thread ]</a>
              <a href="subject.html#575">[ subject ]</a>
              <a href="author.html#575">[ author ]</a>
         </LI>
       </UL>

<hr>
<a href="https://www.mageia.org/mailman/listinfo/mageia-sysadm">More information about the Mageia-sysadm
mailing list</a><br>
</body></html>