Puppet Task: file_ldap_create
- Defined in:
-
tasks/file_ldap_create.json,
tasks/file_ldap_create.rb
Overview
Create an LDAP service on a NAS Server. Only one LDAP Service object can be created per NAS Server.
Supports noop? false
Parameters
- addresses (Optional[Array[String]]) — The list of LDAP server IP addresses. The addresses may be IPv4 or IPv6.
- authentication_type (Enum['Anonymous','Simple','Kerberos']) — Authentication type for the LDAP server.* Anonymous - Anonymous authentication means no authentication occurs and the NAS Server uses an anonymous login to access the LDAP-based directory server.* Simple - Simple authentication means the NAS Server must provide a bind distinguished name and password to access the LDAP-based directory server.* Kerberos - Kerberos authentication means the NAS Server uses a KDC to confirm the identity when accessing the Active Directory.
- base_dn (String[3,255]) — Name of the LDAP base DN. Base Distinguished Name (BDN) of the root of the LDAP directory tree. The appliance uses the DN to bind to the LDAP service and locate in the LDAP directory tree to begin a search for information. The base DN can be expressed as a fully-qualified domain name or in X.509 format by using the attribute dc=. For example, if the fully-qualified domain name is mycompany.com, the base DN is expressed as dc=mycompany,dc=com.
- bind_dn (Optional[String[0,1023]]) — Bind Distinguished Name (DN) to be used when binding.
- bind_password (Optional[String[0,1023]]) — The associated password to be used when binding to the server.
- is_smb_account_used (Optional[Boolean]) — Indicates whether SMB authentication is used to authenticate to the LDAP server. Values are: * true - Indicates that the SMB settings are used for Kerberos authentication. * false - Indicates that Kerberos uses its own settings.
- is_verify_server_certificate (Optional[Boolean]) — Indicates whether Certification Authority certificate is used to verify the LDAP server certificate for secure SSL connections. Values are: * true - verifies LDAP server's certificate. * false - doesn't verify LDAP server's certificate.
- nas_server_id (String) — Unique identifier of the associated NAS Server instance that will use this LDAP object. Only one LDAP object per NAS Server is supported.
- password (Optional[String[0,1023]]) — The associated password for Kerberos authentication.
- port_number (Optional[Integer[0,65536]]) — The TCP/IP port used by the NAS Server to connect to the LDAP servers. The default port number for LDAP is 389 and LDAPS is 636.
- principal (Optional[String[0,1023]]) — Specifies the principal name for Kerberos authentication.
- profile_dn (Optional[String[0,255]]) — For an iPlanet LDAP server, specifies the DN of the entry with the configuration profile.
- protocol (Optional[Enum['LDAP','LDAPS']]) — Indicates whether the LDAP protocol uses SSL for secure network communication. SSL encrypts data over the network and provides message and server authentication.* LDAP - LDAP protocol without SSL.* LDAPS - (Default) LDAP protocol with SSL. When you enable LDAPS, make sure to specify the appropriate LDAPS port (usually port 636) and to upload an LDAPS trust certificate to the LDAP server.
- realm (Optional[String[0,255]]) — Specifies the realm name for Kerberos authentication.