LDAP FreeIPA - tildaslash/RatticWeb GitHub Wiki
The following is an example of configuration file working on FreeIPA version 4.1.0.
Replace all the parameters between <> with your own parameters. The rest of the configuration file should work natively with FreeIPA.
# LDAP server details
uri = ldap://your_freeipa_server:389
binddn = uid=<your_bind_user>,cn=sysaccounts,cn=etc,dc=<your_domain>,dc=<your_tld>
bindpw = <your_bind_user_password>
# User parameters
userbase = cn=users,cn=accounts,dc=<your_domain>,dc=<your_tld>
userfilter = (uid=%(user)s)
# Set up the basic group parameters.
groupbase = cn=groups,cn=accounts,dc=<your_domain>,dc=<your_tld>
groupfilter = (objectClass=nestedgroup)
grouptype = NestedGroupOfNamesType
# How do I find staff
staff = cn=<ratticdb_admin_group>,cn=groups,cn=accounts,dc=<your_domain>,dc=<your_tld>
The binddn user should not be created directly in FreeIPA (see http://www.freeipa.org/page/HowTo/LDAP).
You will need to create a User Group dedicated to ratticdb administrator in FreeIPA.