summaryrefslogtreecommitdiffstats
path: root/environments
diff options
context:
space:
mode:
authorJenkins <jenkins@review.openstack.org>2017-04-06 23:17:17 +0000
committerGerrit Code Review <review@openstack.org>2017-04-06 23:17:17 +0000
commit8dc8980358b6b7dc4720e1c93bb049f5ebf2a7b8 (patch)
tree9a47d586004a96936e99beae6fbfc0d73e7c03bf /environments
parent656f78f00bb74c26dc1ae3f0c455c35ffa434ec9 (diff)
parent347f5434b3e3793b9fdf2a94f49ab7734c5d923b (diff)
Merge "Add trigger to setup a LDAP backend as keystone domaine"
Diffstat (limited to 'environments')
-rw-r--r--environments/services/keystone_domain_specific_ldap_backend.yaml18
1 files changed, 18 insertions, 0 deletions
diff --git a/environments/services/keystone_domain_specific_ldap_backend.yaml b/environments/services/keystone_domain_specific_ldap_backend.yaml
new file mode 100644
index 00000000..40b02fc5
--- /dev/null
+++ b/environments/services/keystone_domain_specific_ldap_backend.yaml
@@ -0,0 +1,18 @@
+# This is an example template on how to configure keystone domain specific LDAP
+# backends. This will configure a domain called tripleoldap will the attributes
+# specified.
+parameter_defaults:
+ KeystoneLDAPDomainEnable: true
+ KeystoneLDAPBackendConfigs:
+ tripleoldap:
+ url: ldap://192.0.2.250
+ user: cn=openstack,ou=Users,dc=tripleo,dc=example,dc=com
+ password: Secrete
+ suffix: dc=tripleo,dc=example,dc=com
+ user_tree_dn: ou=Users,dc=tripleo,dc=example,dc=com
+ user_filter: "(memberOf=cn=OSuser,ou=Groups,dc=tripleo,dc=example,dc=com)"
+ user_objectclass: person
+ user_id_attribute: cn
+ user_allow_create: false
+ user_allow_update: false
+ user_allow_delete: false