diff options
Diffstat (limited to 'pki/base/native-tools/src/setpin/setpin.conf')
| -rw-r--r-- | pki/base/native-tools/src/setpin/setpin.conf | 83 |
1 files changed, 83 insertions, 0 deletions
diff --git a/pki/base/native-tools/src/setpin/setpin.conf b/pki/base/native-tools/src/setpin/setpin.conf new file mode 100644 index 000000000..4e5851858 --- /dev/null +++ b/pki/base/native-tools/src/setpin/setpin.conf @@ -0,0 +1,83 @@ +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# Setpin has a special setup mode which allows you to +# automate the following two tasks. +# +# * To enable setpin to operate, the directory schema must be +# changed to add the pin attribute and pinPerson objectclass. +# +# * To enable pin removal to work well, you can create a new +# pin user with an ACI which lets the user remove the pin +# +# This configuration file is used as an input for setpin. +# After modifying the options in this file, invoke setpin +# with this config file: +# +# setpin optfile=setpin.conf + + +########## GENERAL INFO ABOUT YOUR DIRECTORY ##### + + +#------- Enter the hostname of the LDAP server +host=localhost + +#------- Enter the port number of the LDAP server +port=389 + +#------- Enter the DN of the Directory Manager user +binddn=CN=Directory Manager + +#------- Enter the password for the Directory manager user +bindpw= + + + +################ SCHEMA MODIFICATIONS ####### +# +# Comment-out to turn off schema modification +schemachange=yes + +# Enter the pin attribute name +attribute=pin + +# Enter the pin objectclass +objectclass=pinPerson + + +############### PIN REMOVAL ########## +# +# To enable pin removal, it is advisable to create a new +# user who has the power to remove pins, and nothing else. +# +# Enter the DN and password for the new pin manager user +pinmanager=cn=pinmanager,o=mcom.com +pinmanagerpwd= + +# Enter the base over which this user has the power +# to remove pins +basedn=ou=people,o=mcom.com + + + +## This line switches setpin into setup mode. +## Please do not change it. +setup=yes + |