мастер карта для автомонтирования, консультируемая autofs (Master Map for automounter consulted by autofs)
LDAP AUTHENTICATION, ENCRYPTED AND CERTIFIED CONNECTIONS
LDAP authenticated binds, TLS encrypted connections and
certification may be used by setting appropriate values in the
autofs authentication configuration file and configuring the LDAP
client with appropriate settings. The default location of this
file is @mapdir@/autofs_ldap_auth.conf.
If this file exists it will be used to establish whether TLS or
authentication should be used.
An example of this file is:
<?xml version="1.0" ?>
<autofs_ldap_sasl_conf
usetls="yes"
tlsrequired="no"
authrequired="no"
authtype="DIGEST-MD5"
user="xyz"
secret="abc"
/>
If TLS encryption is to be used the location of the Certificate
Authority certificate must be set within the LDAP client
configuration in order to validate the server certificate. If, in
addition, a certified connection is to be used then the client
certificate and private key file locations must also be
configured within the LDAP client.
In OpenLDAP these may be configured in the ldap.conf file or in
the per-user configuration. For example, it may be sensible to
use the system wide configuration for the location of the
Certificate Authority certificate and set the location of the
client certificate and private key in the per-user configuration.
The location of these files and the configuration entry
requirements is system dependent so the documentation for your
installation will need to be consulted to get further
information.
See autofs_ldap_auth.conf(5) for more information.
