# mnt-ldap/install

# owned by another package, but we NEED to have right perms
:dir			/etc/ldap openldap:openldap 775

:default_owner	openldap:openldap
:default_mode	664

ldap-template-group	/etc/ldap/
ldap-template-slot	/etc/ldap/
ldap-template-sysuser	/etc/ldap/
ldap-template-user	/etc/ldap/
ldap-template-base	/etc/ldap/
ldap-template-secrole	/etc/ldap/

:default_owner	root:root

:default_mode	750
ku-ldap-populate		/usr/sbin/
ku-ldap-usersetup		/usr/sbin/
ku-ldap-check_expired_pwd	/usr/sbin/
ku-ldapsearch			/usr/sbin/
ku-ldapupdate			/usr/sbin/

:default_mode	755
smbldap-passwd			/usr/bin/


# those are really for LDAP/Samba integration, and belongs in srv-samba-pdc
# module, but they are the only functional script that can manage ldap
# users in a decent way

# the main conf file need to be world readable, so users can change theyr
# own password
#
:default_mode	444

smbldap.conf		/etc/smbldap-tools/

# the bind conf contins LDAP admin password! this file MUST be readable
# only by root; really, we should modify the smbldap-tools package to
# use standard ldap package binds, and /etc/ldap.secret, so we have only
# one place where store sensitive infos
#
:default_mode	400

smbldap_bind.conf	/etc/smbldap-tools/




:default_mode	750

:noparse
smbldap-usermod		/usr/sbin/
:parse
