„plugins_auth_ldap“ ändern

plugins_auth_ldap.md

@@ -4,6 +4,9 @@ This plugin provides authentification over LDAP.
 * [Configuration](#configuration)
   * [Set up password hash](#set-up-password-hash)
   * [Set up SSL (LDAPS)](#set-up-ssl-ldap-over-ssl)
+  * [Set object classes for new entries](#set-object-classes-for-new-entries)
+  * [Set attributes for new entries](#set-attributes-for-new-entries)
+  * [Set DN for new entries](#set-dn-for-new-entries)
 
 
 ## Configuration
@@ -62,7 +65,7 @@ ca_cert = "/etc/ssl/my-ca.crt"
 ```
 
 ### Set object classes for new entries
-The default object class set is `inetOrgPerson`, but you can override it using
+The default object class is `inetOrgPerson`, but you can override it using
 ```toml
 [auth_ldap]
 # ...
@@ -91,9 +94,9 @@ To specify other attributes add this to you configuration:
   gidNumber = 1001
   homeDirectory = "/home/{userid}"
   loginShell = "/bin/bash"
-  uidNumber = "1000+"
+  uidNumber = 1000
 ```
-A special attribute is `uidNumber`, specifying a "X+" does mean to use an incrementing generator starting at 1000 (or highest uidNumber in active directory).
+A special attribute is `uidNumber`, specifying a number x does mean to use an incrementing generator starting at x (or highest uidNumber in active directory).
 
 And as you can see you can use placeholders, valid ones:
 * `userid`
@@ -101,7 +104,6 @@ And as you can see you can use placeholders, valid ones:
 * `firstname`
 * `lastname`
 * `mail`
-* `birthday`
 
 ### Set DN for new entries
 You can specify a DN template if your user schema requires it, the default one is:
@@ -112,3 +114,7 @@ To specify a different template use:
 ```toml
 dn_template = "cn={user.firstname} {user.lastname},ou=user,{base_dn}"
 ```
+
+### Other various configuration options
+Other optional configuration values include:
+* `search_dn`, where to search for users, default `ou=people,{base_dn}`