1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
|
#import time
# this file was auto-generated by /usr/bin/cobbler-setup at #$time.asctime()
# the previous file is saved as /etc/cobbler/settings.backup
# cobbler module configuration file
# =================================
# serializers:
# what file/data formats to use for metadata
#
# choices:
# serializer_catalog (fast, uses .d directories in /var/lib/cobbler/config)
# serializer_yaml (original serializer, uses a few text files)
#
# for 99% or more of all installations, use serializer_catalog.
#
# NOTE: serializer changes may remove your ability to access old data.
# serializer_yaml users can change to serializer_catalog w/o manual
# migration steps. Other changes are for new installs only.
[serializers]
settings = serializer_catalog
distro = serializer_catalog
profile = serializer_catalog
system = serializer_catalog
repo = serializer_catalog
image = serializer_catalog
network = serializer_catalog
# authentication:
# what users can log into the WebUI and Read-Write XMLRPC?
#
# choices:
# authn_denyall -- no one (default)
# authn_configfile -- use /etc/cobbler/users.digest (for basic setups)
# authn_passthru -- ask Apache to handle it (used for kerberos)
# authn_ldap -- authenticate against LDAP
# authn_spacewalk -- ask Spacewalk/Satellite (experimental)
# authn_testing -- username/password is always testing/testing (debug)
# (user supplied) -- you may write your own module
#
# WARNING: this is a security setting, do not choose an option blindly.
#
# for more information:
# https://fedorahosted.org/cobbler/wiki/CobblerWebInterface
# https://fedorahosted.org/cobbler/wiki/CustomizableSecurity
# https://fedorahosted.org/cobbler/wiki/CobblerWithKerberos
# https://fedorahosted.org/cobbler/wiki/CobblerWithLdap
[authentication]
module = $authn_module
# authorization:
# once a user has been cleared by the WebUI/XMLRPC, what can they do?
#
# choices:
# authz_allowall -- full access for all authneticated users (default)
# authz_configfile -- determined by /etc/cobbler/users.conf
# authz_ownership -- use users.conf, but add object ownership semantics
# (user supplied) -- you may write your own module
#
# WARNING: this is a security setting, do not choose an option blindly.
#
# If you want to further restrict cobbler with ACLs for various groups,
# pick authz_ownership. authz_allowall does not support ACLs. configfile
# does but does not support object ownership which is useful as an additional
# layer of control.
# for more information:
# https://fedorahosted.org/cobbler/wiki/CobblerWebInterface
# https://fedorahosted.org/cobbler/wiki/CustomizableSecurity
# https://fedorahosted.org/cobbler/wiki/CustomizableAuthorization
# https://fedorahosted.org/cobbler/wiki/AuthorizationWithOwnership
# https://fedorahosted.org/cobbler/wiki/AclFeature
[authorization]
module = $authz_module
# dns:
# chooses the DNS management engine if manage_dns is enabled
# in /etc/cobbler/settings, which is off by default.
#
# choices:
# manage_bind -- default, uses BIND/named
# manage_dnsmasq -- uses dnsmasq, also must select dnsmasq for dhcp below
#
# NOTE: more configuration is still required in /etc/cobbler
#
# for more information:
# https://fedorahosted.org/cobbler/wiki/ManageDns
[dns]
module = $dns_module
# dhcp:
# chooses the DHCP management engine if manage_dhcp is enabled
# in /etc/cobbler/settings, which is off by default.
#
# choices:
# manage_isc -- default, uses ISC dhcpd
# manage_dnsmasq -- uses dnsmasq, also must select dnsmasq for dns above
#
# NOTE: more configuration is still required in /etc/cobbler
#
# for more information:
# https://fedorahosted.org/cobbler/wiki/ManageDhcp
[dhcp]
module = $dhcp_module
#--------------------------------------------------
|
