Univention Bugzilla – Attachment #5534: Fix GSSAPI for slapd for bug #29482
else:
usr="read"
print 'sasl-regexp'
print 'authz-regexp'
print ' uid=(.*),cn=gssapi,cn=auth'
print ' ldap://0.0.0.0:%s/"%s"??sub?uid=$1' % (ldap_port, ldap_base)
print ' ldap:///%s??sub?uid=$1' % (ldap_base,)
print
print 'access to attrs=userPassword'
sasl-regexp
authz-regexp
uid=(.*),cn=gssapi,cn=auth
ldap:///"@%@ldap/base@%@"??sub?uid=$1
ldap:///@%@ldap/base@%@??sub?uid=$1
# allow authentication
access to attrs=userPassword
if ldap_acl_read_anonymous_ips:
for ip in ldap_acl_read_anonymous_ips.split(','):
print ' by peername.ip=%s read' % ip
print ' by anonymous auth'
print ' by * read'