2018-11-13 00:06:09 +00:00
|
|
|
#jinja2:lstrip_blocks: True
|
2018-11-14 21:07:57 +00:00
|
|
|
pam: pam
|
2018-11-12 22:47:46 +00:00
|
|
|
comment {{ pve_auth_pam_description }}
|
|
|
|
default {{ 1 if pve_auth_pam_is_default else 0 }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% if pve_auth_pam_tfa_oath_enabled and not pve_auth_pam_tfa_yubico_enabled %}
|
2018-11-12 22:47:46 +00:00
|
|
|
tfa type=oath,step={{ pve_auth_pam_tfa_oath_timestep }},digits={{ pve_auth_pam_tfa_oath_pwlength }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% elif pve_auth_pam_tfa_yubico_enabled and not pve_auth_pam_tfa_oath_enabled %}
|
2018-11-12 22:47:46 +00:00
|
|
|
tfa type=yubico,id={{ pve_auth_pam_tfa_yubico_api_id }},key={{ pve_auth_pam_tfa_yubico_api_key }},url={{ pve_auth_pam_tfa_yubico_url }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% endif %}
|
2018-11-12 22:29:24 +00:00
|
|
|
|
2018-11-14 21:07:57 +00:00
|
|
|
pve: pve
|
2018-11-12 22:47:46 +00:00
|
|
|
comment {{ pve_auth_pve_description }}
|
|
|
|
default {{ 1 if pve_auth_pve_is_default else 0 }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% if pve_auth_pve_tfa_oath_enabled and not pve_auth_pve_tfa_yubico_enabled %}
|
2018-11-12 22:47:46 +00:00
|
|
|
tfa type=oath,step={{ pve_auth_pve_tfa_oath_timestep }},digits={{ pve_auth_pve_tfa_oath_pwlength }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% elif pve_auth_pve_tfa_yubico_enabled and not pve_auth_pve_tfa_oath_enabled %}
|
2018-11-12 22:47:46 +00:00
|
|
|
tfa type=yubico,id={{ pve_auth_pve_tfa_yubico_api_id }},key={{ pve_auth_pve_tfa_yubico_api_key }},url={{ pve_auth_pve_tfa_yubico_url }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% endif %}
|
2018-11-12 22:29:24 +00:00
|
|
|
{% if pve_auth_ldap_enabled %}
|
2018-11-14 21:03:59 +00:00
|
|
|
|
2018-11-12 22:47:46 +00:00
|
|
|
ldap: {{ pve_auth_ldap_realm }}
|
2018-11-12 22:29:24 +00:00
|
|
|
comment {{ pve_auth_ldap_description }}
|
|
|
|
base_dn {{ pve_auth_ldap_base_dn }}
|
|
|
|
server1 {{ pve_auth_ldap_primary_server }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% if pve_auth_ldap_secondary_server is defined %}
|
2018-11-12 22:29:24 +00:00
|
|
|
server2 {{ pve_auth_ldap_secondary_server }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% endif %}
|
2018-11-12 22:29:24 +00:00
|
|
|
user_attr {{ pve_auth_ldap_user_attr }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% if pve_auth_ldap_bind_dn is defined %}
|
2018-11-12 22:29:24 +00:00
|
|
|
bind_dn {{ pve_auth_ldap_bind_dn }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% endif %}
|
2018-11-12 22:29:24 +00:00
|
|
|
default {{ 1 if pve_auth_ldap_is_default else 0 }}
|
|
|
|
port {{ pve_auth_ldap_port }}
|
|
|
|
secure {{ 1 if pve_auth_ldap_tls_enabled else 0 }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% if pve_auth_ldap_tfa_oath_enabled and not pve_auth_ldap_tfa_yubico_enabled %}
|
2018-11-12 22:29:24 +00:00
|
|
|
tfa type=oath,step={{ pve_auth_ldap_tfa_oath_timestep }},digits={{ pve_auth_ldap_tfa_oath_pwlength }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% elif pve_auth_ldap_tfa_yubico_enabled and not pve_auth_ldap_tfa_oath_enabled %}
|
2018-11-12 22:29:24 +00:00
|
|
|
tfa type=yubico,id={{ pve_auth_ldap_tfa_yubico_api_id }},key={{ pve_auth_ldap_tfa_yubico_api_key }},url={{ pve_auth_ldap_tfa_yubico_url }}
|
2018-11-13 00:06:09 +00:00
|
|
|
{% endif %}
|
2018-11-12 22:29:24 +00:00
|
|
|
{% endif %}
|