aitzol/ldap-docker
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

2FA

Browse Source
This commit is contained in:
aitzol 2023-11-08 08:40:04 +01:00
parent 6f4d1a2cdf
commit 062e05c071
3 changed files with 9 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
backup/export.ldif
View File

@ -35,6 +35,7 @@ dn: cn=seiichi takimoto,cn=users,ou=groups,dc=example,dc=org
active: TRUE active: TRUE
cn: seiichi takimoto cn: seiichi takimoto
fakecn: FALSE fakecn: FALSE
secureAuth: FALSE
devices: unknown devices: unknown
lastLogin: 199412161032Z lastLogin: 199412161032Z
ip: 185.14.36.84 ip: 185.14.36.84

1
docker-compose.yaml
View File

@ -8,6 +8,7 @@ services:
ports: ports:
- 389:389 - 389:389
- 636:636 - 636:636
hostname: "ldap.lainoa.eus"
environment: environment:
LDAP_ORGANISATION: example LDAP_ORGANISATION: example
LDAP_DOMAIN: example.org LDAP_DOMAIN: example.org

9
schema/custom.schema
View File

@ -6,7 +6,6 @@
## 1.3.6.1.4.1.19937.1.1.x - attributetypes ## 1.3.6.1.4.1.19937.1.1.x - attributetypes
## 1.3.6.1.4.1.19937.1.2.x - objectclasses ## 1.3.6.1.4.1.19937.1.2.x - objectclasses
## ##
attributetype ( 2.25.330098197460787237907941808102951680393.1.0 NAME 'active' attributetype ( 2.25.330098197460787237907941808102951680393.1.0 NAME 'active'
DESC 'True if account is active' DESC 'True if account is active'
EQUALITY booleanMatch EQUALITY booleanMatch
@ -36,7 +35,13 @@ attributetype ( 2.25.330098197460787237907941808102951680393.1.4 NAME 'ip'
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE ) SINGLE-VALUE )
attributetype ( 2.25.330098197460787237907941808102951680393.1.5 NAME 'secureAuth'
DESC 'True if 2FA active'
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
SINGLE-VALUE )
objectclass ( 2.25.330098197460787237907941808102951680393.1.2.0 NAME 'accountsManagement' SUP top AUXILIARY objectclass ( 2.25.330098197460787237907941808102951680393.1.2.0 NAME 'accountsManagement' SUP top AUXILIARY
DESC 'Accounts management' DESC 'Accounts management'
MUST ( cn $ uid $ active $ fakeCn $ devices ) MUST ( cn $ uid $ active $ fakeCn $ devices )
MAY ( userPassword $ description $ lastLogin $ ip ) ) MAY ( userPassword $ description $ lastLogin $ ip $ secureAuth) )