From d89a2251fda17b24a9f9f35205be356860fbd63a Mon Sep 17 00:00:00 2001
From: "info@pi-farm.de" <pi-farm@noreply.git.pi-farm.de>
Date: Thu, 2 Apr 2026 13:38:51 +0000
Subject: [PATCH] =?UTF-8?q?sssd.conf=20hinzugef=C3=BCgt?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 sssd.conf | 35 +++++++++++++++++++++++++++++++++++
 1 file changed, 35 insertions(+)
 create mode 100644 sssd.conf

diff --git a/sssd.conf b/sssd.conf
new file mode 100644
index 0000000..75cccd8
--- /dev/null
+++ b/sssd.conf
@@ -0,0 +1,35 @@
+[sssd]
+domains = LDAP
+services = nss, pam
+config_file_version = 2
+debug_level = 9
+
+[domain/LDAP]
+id_provider = ldap
+auth_provider = ldap
+chpass_provider = ldap
+ldap_schema = $(LDAP_SCHEMA)
+ldap_auth_disable_tls_never_use_in_production = $(LDAP_AUTH_DISABLE_TLS)
+autofs_provider = ldap
+access_provider = simple
+
+ldap_uri = ldap://$(LDAP_URI)
+ldap_default_bind_dn = cn=$(LDAP_BIND_USER),$(LDAP_DOMAIN_DC)
+ldap_default_authtok = $(LDAP_BIND_PASSWORD)
+
+ldap_search_base = $(LDAP_SEARCH_BASE)
+ldap_user_search_base = $(LDAP_USER_SEARCH_BASE)
+ldap_group_search_base = $(LDAP_GROUP_SEARCH_BASE)
+ldap_user_password_attribute = $(LDAP_USER_PASSWORD_ATTRIBUTE)
+ldap_user_object_class = $(LDAP_USER_OBJECT_CLASS)
+ldap_user_name = $(LDAP_USER_NAME)
+ldap_user_dn_attribute = $(LDAP_USER_DN_ATTRIBUTE)
+ldap_group_object_class = $(LDAP_GROUP_OBJECTS_CLASS)
+ldap_id_use_start_tls = $(LDAP_ID_USE_START_TLS)
+ldap_auth_use_start_tls = $(LDAP_AUTH_USE_START_TLS)
+ldap_tls_reqcert = $(LDAP_TLS_REQCERT)
+
+simple_allow_groups = $(LDAP_SIMPLE_ALLOW_GROUPS)
+
+enumerate = True
+cache_credentials = True
\ No newline at end of file