diff options
| author | Allan Feid <allanfeid@gmail.com> | 2013-03-21 14:19:48 -0400 |
|---|---|---|
| committer | Allan <allanfeid@gmail.com> | 2013-04-14 21:52:42 -0400 |
| commit | f452c3d6b15123ca1b383f1d200f4cb406c81852 (patch) | |
| tree | fe70b8e28792b14a55a3388bceaadcf3dea60fe8 /etc | |
| parent | b4db547d0a681fbf7c8927a8c07c8bb3844582fb (diff) | |
| download | keystone-f452c3d6b15123ca1b383f1d200f4cb406c81852.tar.gz keystone-f452c3d6b15123ca1b383f1d200f4cb406c81852.tar.xz keystone-f452c3d6b15123ca1b383f1d200f4cb406c81852.zip | |
Allow additional attribute mappings in ldap
This is needed as a work around for objectclasses that require additional
attributes other than just what is supplied in user_id_attribute and
user_name_attribute.
Change-Id: Ie6cdd0534b8389f62f98fdca7d19bc0feb9c131f
Fixes: bug #1158077
Diffstat (limited to 'etc')
| -rw-r--r-- | etc/keystone.conf.sample | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/etc/keystone.conf.sample b/etc/keystone.conf.sample index 8cb2cca3..55b265aa 100644 --- a/etc/keystone.conf.sample +++ b/etc/keystone.conf.sample @@ -226,6 +226,18 @@ # tls_cacertdir = # tls_req_cert = demand +# Additional attribute mappings can be used to map ldap attributes to internal +# keystone attributes. This allows keystone to fulfill ldap objectclass +# requirements. An example to map the description and gecos attributes to a +# user's name would be: +# user_additional_attribute_mapping = description:name, gecos:name +# +# domain_additional_attribute_mapping = +# group_additional_attribute_mapping = +# role_additional_attribute_mapping = +# project_additional_attribute_mapping = +# user_additional_attribute_mapping = + [auth] methods = password,token password = keystone.auth.plugins.password.Password |