Univention - Proftpd ldap.conf

Univention - Proftpd ldap.conf

Posted By: pmietlicki

Published to Linux on Jun 03, 2015

The LDAP server inside Univention Corporate Server (UCS) use, by default, 7389 port. So don't forget to set it inside the configuration file :

#
# Proftpd sample configuration for LDAP authentication.
#
# (This is not to be used if you prefer a PAM-based SQL authentication)
#
AuthOrder mod_ldap.c

#
# This is used for ordinary LDAP connections, with or without TLS
#
LDAPServer ldap://ucsmaster.example.local:7389/??sub
LDAPDNInfo "uid=proftp,cn=users,dc=example,dc=local" "Password"
LDAPUseTLS on
#
# To be set on only for LDAP/TLS on ordinary port, for LDAP+SSL see below
# 
# Get user info (dn, uid, gid) with anonymous bind
LDAPDoAuth on "cn=users,dc=example,dc=local" "(&(uid=%v)(objectclass=posixAccount))"
# GID to name in dir listing
LDAPDoGIDLookups on "cn=groups,dc=example,dc=local" "(&(cn=%v)(objectclass=posixGroup))" "(&(gidNumber=%v)(objectclass=posixGroup))" "(&(memberUid=%v)(objectclass=posixGroup))"
# UID to name in dir listing
LDAPDoUIDLookups on "cn=users,dc=example,dc=local" "(&(uidNumber=%v)(objectclass=posixAccount))"
# Create homedir if not exists
LDAPGenerateHomedir on

Tags: LDAP, univention

Archive