![[Zobrazit/Skrýt nabídky vlevo]](img/icons/oleftcol.png "[Zobrazit/Skrýt nabídky vlevo]"){kind=icon}
![[Zobrazit/Skrýt nabídky vpravo]](img/icons/orightcol.png "[Zobrazit/Skrýt nabídky vpravo]"){kind=icon}
ldap-pub.hosting.cldn.cz
Ldap access info
| host | port | encryption | login | heslo |
| 109.205.75.91 | 636 | ssl | cn=Directory Manager | 1:IichKi00NnV2d0Q= |
| 109.205.75.91 | 389 | tls | cn=Directory Manager | 1:IichKi00NnV2d0Q= |
List of used schemas
Additionally used schemas and their description are found here
Domain tree structure
Structure of the new empty domain looks like this:
Schema for that structure looks like this:
Note that each domain has it's own reader user, with read rights for specific domain attributes.
This user can be used in any ldap-dependent service to allow for read access to domain-only parts, for customer's domain, without compromising information of the other domains.
One such example is owncloud ldap bind for specific customer.
example.borg-schema.ldif
version: 1 dn: dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: top objectClass: DKIM objectClass: domain objectClass: amavisAccount objectClass: UVTMailDomain dc: example.borg DKIMSelector: mail mail: example.borg amavisFilterPort: 10034 amavisSaUserName: example.borg didNumber: 210000 DKIMDomain: example.borg DKIMKey:: LS0tLS1CRUdJTiBSU0EgUFJJVkFURSBLRVktLS0tLQpNSUlFcFFJQkFBS0NBUUVBMG NGL0xHYWxaWFNONndKMjc2aHVKbDFKUG0rUm93NERoVXIzNXR5ZlRmc3JQUjh3CldYUGM3WmE3M XpvUGdmODBtTEFhdlBLZTBDRVI5aFhjSGsrMUQ1MDAvSjFrY2R3THhCRkhEUGgraysxaVpoWVoK RHJGQkJ1Zi9Eb2s2OFBHc1ladWpqTVB0ZEI4cFF5eGRMbGlhaXZ4ekowdm5PdVBmcEp5UGVSb2o 3ZVIwRTYzRAoxTmNtTUhwZU1BUEtmRENDQmpwcTQ2SmU0MGtKR1Jiekxablk0bmpFSXpVc0l3bT ArWDFUV0VFZEREWFdsR3h3Cm8rMi9Pblp6bnFJWndKWU9iSTVXalhRNWMzUTQ3MDhVNlByaDVPK 2dwSHFkQTArT285aGZXdFBmYUgvSW5GckUKekpKTi9sTDB1YnduaHVvUmMrOEVtTzhQaEI5djZ5 eDBaWmYrSVFJREFRQUJBb0lCQVFDUUtkQnhRTjgrZXJ3cgpvSmNFSXB3S0xDVnlEeFptbmZRWGd hNGVjdFhlcjlsSStnMnQvVzhEc0l6TDRURFZaUVRPU0lNb0NBelUrVld4Cjc5Wkkwdm1ia0szaF RYL0NyYjA4ZGErQ242dkhtZWorUndQVDBFbmtLRUZweVRIRWRpWEhORVJWTkRnWWptNDYKcDl3b lJXaDZUQVlOSlNMNG03T1RITE9UUlQ4YWVhSU53bWpUNTg5TmpHU0ZCekpDUDVCTGFXOUN0WWlR bU52SwpmR0FvSjVjSFhtQ3F2NUdiQlZUZHliWUdGdzlzNlZHa1NJOHZMY04rdk16ckNscGIzVEl mRm84d2Iwd3dnUXFmCmUxSWVNam11TW9nbDAyY1luT09zaFRxcWNjaFdpblhPTWlRZzVNSXhPNj NhU1Y2bGJCcU5tSm9wb240MjZGVG8KSkxIVHEzVDlBb0dCQU82eVE2Rldmc0k4aFBPQ2JQelJBc 1lqdTc5ZUY4cmIydkNHNFJJRkhZeDRGZkVBcFM3YQpxY2R0S3RDemRXakhmMUlzRDF0bTM0eHp3 REhNK2lRRStnQTFwakVzL09uZGpwMXJRTGVqdGFNY2hHengrajBuCkxDT2U4UHNEdk9XalRncmJ uQUh6OW9WRWw4Nm8xN01KR1ovOFBJTWFWQzJVczJRSHJCZk54cjdMQW9HQkFPRDIKSjF0QW4vN0 J4L2l0U0tZR0ppcUpQNzZmZUczdEp5enpOdnZ3OXh4K0xlQ2dkMzNlR3hSRFh6RHg5YVVwZE9BM QppbjI2K1FlQlZSRDFqU0JDeklIUWZLNTlndTRVelRETTNnR052bloyR1MwaTg0UWRWc3p4Vyto UDI1dUZDTzZaCk40NDBxM25DZExVYURZa1VBRU9VdnB0M2M1VVI0NTIzdzRkcWMwMURBb0dBWnc 4QXRFQXNLcUVHcGp6QjRjWTgKZEdBcFI4N1FadjNWNGRQYWlYVTc5TkpFWnZIb1gvcDVJMm0yK3 JVQkZHUk9US1JKWFNWbGo3YktYTFlycWpHYgozMHRLbmlEV2NnTCsrR2krWUl1R2VRNXUvcnJiV 0Z2NWFzZk5OQlBCRTBVWEJRa2NxcHN5N1FkWXBCbXlSOUsrCkJaMWFZeUNUQjdzVVdUUVcwWkEv SjFFQ2dZRUFwUEIxN0xjV1YrQldzU0xFR0U1NzMwWWdRYkNFeVB4UGMrcWoKVHRmZkpybnhBemh FUkRuNzJzQ0c0OGtUMVZQdkNKRFpDTlIwMENib2F2WE8wbStIcUVwbmtEd2dLbFdBR0o2cwp5N0 RVaStDTkZ3WUFTOGFESk9KMkEzL0J3V1lxSlY2YldCMlArRWMxOEs2NGErQUpUWU9hdVR3OHQza VZUY2MxCmltem5PeWNDZ1lFQTBIeks1K0ovcFR0cUJOY2hBc1VoVDNOeEFmNzZaTjcxZGV6NjNC VnNjS0oyQjNId1g2VWIKK2E5MXhkVFlIRFRTVTNNcURxVkdtR3EyeFpHWGwzRlZHdWN5aDVIQmh 6bjBrMUNTWnRDWVhPekxxUkRFRFMwegpMOVpiYTFIc3R1V1VBMmYrb2FTOHJ0OGxxUVZ6NDVyZW NoSzhqTzh1bWNmMDc1OXk2ZVk1ZFlVPQotLS0tLUVORCBSU0EgUFJJVkFURSBLRVktLS0tLQo= aci: (targetattr = "*") (version 3.0;acl "Domain reader";allow (read,compare ,search)(userdn = "ldap:///uid=reader,ou=specialusers,dc=example.borg,dc=do mains,dc=hosting,dc=cldn,dc=cz");) dn: dc=dnsRecords,dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: dcObject objectClass: top objectClass: UVTSeparator dc: dnsRecords dn: dc=hostedSites,dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: dcObject objectClass: top objectClass: UVTSeparator dc: hostedSites dn: dc=mailAliases,dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: dcObject objectClass: top objectClass: UVTSeparator dc: mailAliases dn: dc=mailDomainAliases,dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: dcObject objectClass: top objectClass: UVTSeparator dc: mailDomainAliases dn: ou=groups,dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: top objectClass: organizationalUnit ou: groups dn: ou=machines,dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: top objectClass: organizationalUnit ou: machines dn: ou=servers,dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: top objectClass: organizationalUnit ou: servers dn: ou=specialUsers,dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: top objectClass: organizationalUnit ou: specialUsers dn: ou=people,dc=example.borg,dc=domains,dc=hosting,dc=cldn,dc=cz objectClass: top objectClass: organizationalUnit ou: people dn: uid=reader,ou=specialUsers,dc=example.borg,dc=domains,dc=hosting,dc=cldn ,dc=cz objectClass: top objectClass: account objectClass: shadowAccount uid: reader userPassword:: e3NzaGF9OFMrb3NRZmhsMHVPdi91eHBLN1h3Mlh5ZDJvNUsvbjIzbDRyUkE9P Q==
![[přepni]](javascript:icntoggle('mod-Application_Menuleft1','module.png'); "[přepni]"){kind=small}