From 5335c65cbaf4a899dae6bc497ae7e85e0831f540 Mon Sep 17 00:00:00 2001
From: Rich Megginson <rmeggins@redhat.com>
Date: Mon, 7 Feb 2005 19:02:49 +0000
Subject: PAM pass through auth plugin support

---
 ldap/admin/src/create_instance.c | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)

(limited to 'ldap/admin/src/create_instance.c')

diff --git a/ldap/admin/src/create_instance.c b/ldap/admin/src/create_instance.c
index 26b276b6..6d3d3111 100644
--- a/ldap/admin/src/create_instance.c
+++ b/ldap/admin/src/create_instance.c
@@ -3727,6 +3727,30 @@ char *ds_gen_confs(char *sroot, server_config_s *cf,
         }
     }
 
+	/* PAM Pass Through Auth plugin - off by default */
+	fprintf(f, "dn: cn=PAM Pass Through Auth,cn=plugins,cn=config\n");
+	fprintf(f, "objectclass: top\n");
+	fprintf(f, "objectclass: nsSlapdPlugin\n");
+	fprintf(f, "objectclass: extensibleObject\n");
+	fprintf(f, "objectclass: pamConfig\n");
+	fprintf(f, "cn: PAM Pass Through Auth\n");
+	fprintf(f, "nsslapd-pluginpath: %s/lib/pam-passthru-plugin%s\n", sroot, shared_lib);
+	fprintf(f, "nsslapd-plugininitfunc: pam_passthruauth_init\n");
+	fprintf(f, "nsslapd-plugintype: preoperation\n");
+	fprintf(f, "nsslapd-pluginenabled: off\n");
+	fprintf(f, "nsslapd-pluginLoadGlobal: true\n");
+	fprintf(f, "nsslapd-plugin-depends-on-type: database\n");
+	fprintf(f, "pamMissingSuffix: ALLOW\n");
+	if (cf->netscaperoot) {
+		fprintf(f, "pamExcludeSuffix: %s\n", cf->netscaperoot);
+	}
+	fprintf(f, "pamExcludeSuffix: cn=config\n");
+	fprintf(f, "pamMapMethod: RDN\n");
+	fprintf(f, "pamFallback: FALSE\n");
+	fprintf(f, "pamSecure: TRUE\n");
+	fprintf(f, "pamService: ldapserver\n");
+	fprintf(f, "\n");
+
     fprintf(f, "dn: cn=ldbm database,cn=plugins,cn=config\n");
     fprintf(f, "objectclass: top\n");
     fprintf(f, "objectclass: nsSlapdPlugin\n");
-- 
cgit