[domain/win.kis.fri.uniza.sk]

autofs_provider = ldap
ldap_schema = rfc2307bis
ldap_search_base = dc=win,dc=kis,dc=fri,dc=uniza,dc=sk
id_provider = ldap
auth_provider = ldap
chpass_provider = ldap
access_provider = ldap
ldap_uri = ldap://192.168.10.3
ldap_id_use_start_tls = False
cache_credentials = True
ldap_tls_cacertdir = /etc/openldap/cacerts
ldap_default_bind_dn = mako@win.kis.fri.uniza.sk
ldap_default_authtok = XXXX

ldap_group_search_base = dc=win,dc=kis,dc=fri,dc=uniza,dc=sk
ldap_user_search_base = dc=win,dc=kis,dc=fri,dc=uniza,dc=sk

ldap_id_mapping = True

ldap_access_filter = (&(sAMAccountName=mako)(objectClass=organizationalPerson)(|(memberOf=CN=Studenti-Cloud,CN=Users,DC=win,DC=kis,DC=fri,DC=uniza,DC=sk)(memberOf=CN=Studenti-ManageIQ,CN=Users,DC=win,DC=kis,DC=fri,DC=uniza,DC=sk)(memberOf=CN=STUDENTI,CN=Users,DC=win,DC=kis,DC=fri,DC=uniza,DC=sk)))

[sssd]
services = nss, pam, autofs, ifp

domains = win.kis.fri.uniza.sk
[nss]
homedir_substring = /home

[pam]

[sudo]

[autofs]

[ssh]

[pac]

[ifp]
user_attributes = +sAMAccountName, +givenName, +sN, +displayName, +mail
allowed_uids = apache, root, manageiq

[session_recording]