2023-02-01 12:02:52 +00:00
|
|
|
# lldap configuration:
|
|
|
|
# LLDAP_LDAP_BASE_DN: dc=example,dc=com
|
|
|
|
|
|
|
|
# ##############################
|
|
|
|
# rest of the Dex options
|
|
|
|
# ##############################
|
|
|
|
|
|
|
|
connectors:
|
|
|
|
- type: ldap
|
|
|
|
id: ldap
|
|
|
|
name: LDAP
|
|
|
|
config:
|
2024-07-22 05:38:22 +00:00
|
|
|
host: lldap-host:3890 # or 6360 if you have ldaps enabled, make sure it does not start with `ldap://`
|
2023-02-01 12:02:52 +00:00
|
|
|
insecureNoSSL: true # or false if you have ldaps enabled
|
|
|
|
insecureSkipVerify: true # or false if you have ldaps enabled
|
|
|
|
bindDN: uid=admin,ou=people,dc=example,dc=com # replace admin with your admin user
|
|
|
|
bindPW: very-secure-password # replace with your admin password
|
|
|
|
userSearch:
|
|
|
|
baseDN: ou=people,dc=example,dc=com
|
|
|
|
username: uid
|
|
|
|
idAttr: uid
|
|
|
|
emailAttr: mail
|
|
|
|
nameAttr: displayName
|
|
|
|
preferredUsernameAttr: uid
|
|
|
|
groupSearch:
|
|
|
|
baseDN: ou=groups,dc=example,dc=com
|
|
|
|
filter: "(objectClass=groupOfUniqueNames)"
|
|
|
|
userMatchers:
|
2023-03-17 23:07:40 +00:00
|
|
|
- userAttr: DN
|
2023-02-01 12:02:52 +00:00
|
|
|
groupAttr: member
|
2023-03-17 23:07:40 +00:00
|
|
|
nameAttr: cn
|