#ident "@(#)Deja.properties	1.58 10/28/99 SMI"
#
#
# Copyright 10/28/99 Sun Microsystems, Inc. All Rights Reserved
#
#
# VERSION=4.1
#

#
# Deja Properties
#

#
# General Properties
#

# schema thread time limit in milliseconds (0 = no limit)
SCHEMA_THREAD_TIME_LIMIT=0
#
# max. number of nodes in browser tree (0 = no limit)
BROWSER_ENTRY_LIMIT=0
# max number of subnodes of a node in the browser tree (0 = no limit)
BROWSER_SUBENTRY_LIMIT=0
# time limit to load subnodes (in ms, 0 = no limit)
BROWSER_LOAD_SUBNODES_TIME_LIMIT=10000
# time limit to verify if entry is a leaf or an inner node (in ms, 0 = no limit)
BROWSER_CHECK_NODE_TIME_LIMIT=2000
#
# authentication mechanism
# supported values : CRAM-MD5, simple (cleartext password)
# STANDARD_SECURITY_AUTHENTICATION=CRAM-MD5
STANDARD_SECURITY_AUTHENTICATION=simple

#
# Standard LDAP Properties
#

#
# Standard Add/Modify/View
#
STANDARD_ATTRIBUTES_CRYPTED=radiusppppasswd, radiusloginpasswd, chappassword, radiusslippasswd, userpassword 
#
# Standard Login
#
STANDARD_LOGIN_SEARCH_FILTER= (|(cn=*{0}*)(uid=*{0}*))
STANDARD_LOGIN_MAX_SEARCH_RESULT= 55
# STANDARD_LOGIN_ALIASES= userA_alias; userA_dn; userB_alias; userB_dn
STANDARD_LOGIN_ALIASES= manager; cn=Directory Manager; admin; uid=admin,ou=Administrators,ou=topologymanagement,o=NetscapeRoot
#
# Standard Search
#
STANDARD_SEARCH_FILTERS= STANDARD_SEARCH_FILTER_PERSON, STANDARD_SEARCH_FILTER_LOCALITY, STANDARD_SEARCH_FILTER_ORGANIZATION, STANDARD_SEARCH_FILTER_WILDCARD
STANDARD_SEARCH_FILTER_PERSON= STANDARD_SEARCH_FILTER_PERSON_IDENTIFIER, (&(objectclass=person)(cn=*{0}*))
STANDARD_SEARCH_FILTER_LOCALITY= STANDARD_SEARCH_FILTER_LOCALITY_IDENTIFIER, (l=*{0}*)
STANDARD_SEARCH_FILTER_ORGANIZATION= STANDARD_SEARCH_FILTER_ORGANIZATION_IDENTIFIER, (|(o=*{0}*)(ou=*{0}*))
STANDARD_SEARCH_FILTER_WILDCARD= STANDARD_SEARCH_FILTER_WILDCARD_IDENTIFIER, {0}
STANDARD_SEARCH_TABLE_LABELS= cn; STANDARD_SEARCH_TABLE_NAME_LABEL, telephoneNumber; STANDARD_SEARCH_TABLE_PHONE_LABEL, mail; STANDARD_SEARCH_TABLE_MAIL_LABEL
#
# Standard Create
#
STANDARD_CREATE_PASTE_CLEAR_DATA=FALSE
#STANDARD_CREATE_PASTE_CLEAR_DATA=TRUE
#
# Alternate way to specify naming attributes if cannot be retrieved from schema
STANDARD_CREATE_ALTERNATIVE_NAMING_ATTRIBUTES=cn; o; ou; l; c; dc

#
# NIS Properties
#

#
# list of supported maps
#
NIS_MAPS=passwd.byname;NIS_MAP_USERS_CHOICE, mail.aliases;NIS_MAP_ALIASES_CHOICE, hosts.byname;NIS_MAP_HOSTS_CHOICE, group.byname;NIS_MAP_GROUPS_CHOICE
#
# passwd map
#
NIS_FILTER.passwd.byname= (&(objectclass=posixAccount)(uid=$NIS_KEY))
NIS_DOMAIN.passwd.byname= airius_users.com
NIS_NAMINGATTR.passwd.byname=cn
NIS_ROOT.passwd.byname=   dc=airius_users,dc=com
NIS_OCLASS.passwd.byname= posixaccount,person
NIS_LIST.passwd.byname=cn;NIS_USER_CN_ATTR_LABEL, uid;NIS_UID_ATTR_LABEL, uidNumber;NIS_UIDNUMBER_ATTR_LABEL, gidNumber;NIS_GIDNUMBER_ATTR_LABEL, homeDirectory;NIS_HOMEDIRECTORY_ATTR_LABEL
NIS_ADD.passwd.byname=cn;NIS_USER_CN_ATTR_LABEL, sn;NIS_SN_ATTR_LABEL, uid;NIS_UID_ATTR_LABEL, uidNumber;NIS_UIDNUMBER_ATTR_LABEL;int, gidNumber;NIS_GIDNUMBER_ATTR_LABEL;int, homeDirectory;NIS_HOMEDIRECTORY_ATTR_LABEL, userPassword;NIS_USERPASSWORD_ATTR_LABEL;crypt, loginShell;NIS_LOGINSHELL_ATTR_LABEL, description;NIS_DESCRIPTION_ATTR_LABEL
#
# alias map
#
NIS_FILTER.mail.aliases= (&(objectclass=nisMailAlias)(cn=$NIS_KEY))
NIS_DOMAIN.mail.aliases= airius_aliases.com
NIS_NAMINGATTR.mail.aliases=cn
NIS_ROOT.mail.aliases=   dc=airius_aliases,dc=com
NIS_OCLASS.mail.aliases= nismailalias
NIS_LIST.mail.aliases=   cn;NIS_ALIAS_CN_ATTR_LABEL, rfc822mailMember;NIS_RFC822MAILMEMBER_ATTR_LABEL
NIS_ADD.mail.aliases=    cn;NIS_ALIAS_CN_ATTR_LABEL, rfc822mailMember;NIS_RFC822MAILMEMBER_ATTR_LABEL
#
# host map
#
NIS_FILTER.hosts.byname= (&(objectclass=ipHost)(cn=$NIS_KEY))
NIS_DOMAIN.hosts.byname= airius_hosts.com
NIS_NAMINGATTR.hosts.byname=cn
NIS_ROOT.hosts.byname=   dc=airius_hosts,dc=com
NIS_OCLASS.hosts.byname= ipHost
NIS_LIST.hosts.byname=   cn;NIS_HOST_CN_ATTR_LABEL, ipHostNumber;NIS_IPHOSTNUMBER_ATTR_LABEL, macaddress;NIS_MACADDRESS_ATTR_LABEL
NIS_ADD.hosts.byname=    cn;NIS_HOST_CN_ATTR_LABEL, ipHostNumber;NIS_IPHOSTNUMBER_ATTR_LABEL;ipaddr, macaddress;NIS_MACADDRESS_ATTR_LABEL, l;NIS_L_ATTR_LABEL
#
# group map
#
NIS_FILTER.group.byname= (&(objectclass=posixGroup)(cn=$NIS_KEY))
NIS_DOMAIN.group.byname= airius_groups.com
NIS_NAMINGATTR.group.byname=cn
NIS_ROOT.group.byname=   dc=airius_groups,dc=com
NIS_OCLASS.group.byname= posixGroup
NIS_LIST.group.byname=   cn;NIS_GROUP_CN_ATTR_LABEL, gidNumber;NIS_GIDNUMBER_ATTR_LABEL, memberUid;NIS_MEMBERUID_ATTR_LABEL
NIS_ADD.group.byname=    cn;NIS_GROUP_CN_ATTR_LABEL, gidNumber;NIS_GIDNUMBER_ATTR_LABEL;int, memberUid;NIS_MEMBERUID_ATTR_LABEL

NIS_LIST.default=        cn;NIS_CN_ATTR_LABEL

#
# RADIUS Properties
#
 
# RADIUS SEARCH PANEL
 
# Searches defined for Remote Users
RADIUS_RU_SEARCH=s_user;RADIUS_RU_SEARCH_USER_LABEL, s_name;RADIUS_RU_SEARCH_NAME_LABEL, l_bl_acc;RADIUS_RU_LIST_BLOCKED_ACCOUNTS_LABEL , l_ppp;RADIUS_RU_LIST_PPP_USER_LABEL, l_slip;RADIUS_RU_LIST_SLIP_USER_LABEL, l_login;RADIUS_RU_LIST_LOGIN_USER_LABEL, s_n_u;RADIUS_RU_SEARCH_NAME_UID_LABEL
 
# Associated filters for Remote User searches
RADIUS_RU_FILTER.s_user=   (& (objectclass=remoteuser)(uid={$uid;RADIUS_RU_UID_ATTR_LABEL$}))
RADIUS_RU_FILTER.s_name=   (& (objectclass=remoteuser)(cn={$cn;RADIUS_RU_CN_ATTR_LABEL$}))
RADIUS_RU_FILTER.l_bl_acc= (& (objectclass=remoteuser)(radiusAuthFailedAccess>=$RADIUS_MAX_FAIL))
RADIUS_RU_FILTER.l_ppp=    (& (objectclass=remoteuser)(radiusPppProfile=*)(radiusPppPasswd=*))
RADIUS_RU_FILTER.l_slip=   (& (objectclass=remoteuser)(radiusSlipProfile=*)(radiusSlipPasswd=*))
RADIUS_RU_FILTER.l_login=  (& (objectclass=remoteuser)(radiusLoginProfile=*)(radiusLoginPasswd=*))
RADIUS_RU_FILTER.s_n_u=    (& (objectclass=remoteuser)(cn={$cn;RADIUS_RU_CN_ATTR_LABEL$})(uid={$uid;RADIUS_RU_UID_ATTR_LABEL$}))
 
# Attributes to be listed in the search results
RADIUS_RU_LIST.s_user=     cn;RADIUS_RU_CN_ATTR_LABEL, uid;RADIUS_RU_UID_ATTR_LABEL, framedProtocol;RADIUS_RU_FRAMEDPROTOCOL_ATTR_LABEL
RADIUS_RU_LIST.l_bl_acc=   cn;RADIUS_RU_CN_ATTR_LABEL, uid;RADIUS_RU_UID_ATTR_LABEL, radiusAuthFailedAccess;RADIUS_RU_RADIUSAUTHFAILEDACCESS_ATTR_LABEL
RADIUS_RU_LIST.default=    cn;RADIUS_RU_CN_ATTR_LABEL, uid;RADIUS_RU_UID_ATTR_LABEL

# Searches defined for RASes (Remote Access Servers)
RADIUS_RAS_SEARCH=s_name;RADIUS_RAS_SEARCH_NAME_LABEL, s_addr;RADIUS_RAS_SEARCH_IPADDR_LABEL
 
# Associated filters for NAS searches
RADIUS_RAS_FILTER.s_name=  (& (objectclass=NAS)(cn={$cn;RADIUS_RAS_CN_ATTR_LABEL$}))
RADIUS_RAS_FILTER.s_addr=  (& (objectclass=NAS)(iphostnumber={$iphostnumber;RADIUS_RAS_IPHOSTNUMBER_ATTR_LABEL;ipaddr$}))
 
# Attributes to be listed in the search results 
RADIUS_RAS_LIST.default=   cn;RADIUS_RAS_CN_ATTR_LABEL, iphostnumber;RADIUS_RAS_IPHOSTNUMBER_ATTR_LABEL

# Attributes to be listed in case of a complex search
RADIUS_COMPLEX_SEARCH_LIST=cn;RADIUS_CN_ATTR_LABEL, iphostnumber;RADIUS_RAS_IPHOSTNUMBER_ATTR_LABEL, uid;RADIUS_RU_UID_ATTR_LABEL

# Radius ADD PANEL

RADIUS_RU_ADD_COMMON=      uid;RADIUS_RU_UID_ATTR_LABEL, grpCheckInfo;RADIUS_RU_GRPCHECKINFO_ATTR_LABEL, grpReplyInfo;RADIUS_RU_GRPREPLYINFO_ATTR_LABEL, framedIPAddress;RADIUS_RU_FRAMEDIPADDRESS_LABEL;ipaddr, userPassword;RADIUS_RU_USERPASSWORD_LABEL;crypt
RADIUS_RAS_ADD_COMMON=     iphostNumber;RADIUS_RAS_IPHOSTNUMBER_ATTR_LABEL;ipaddr, sharedKey;RADIUS_RAS_SHAREDKEY_LABEL;crypt

# Profiles defined for Remote Users (RU)
RADIUS_RU_PROFILE=         ppp_p;RADIUS_RU_PPP_PROFILE_LABEL, slip_p;RADIUS_RU_SLIP_PROFILE_LABEL, login_p;RADIUS_RU_LOGIN_PROFILE_LABEL

# Mandatory RU profile attributes (you can edit the next line by ADDING attributes, but
# NEVER erase the attributes that are given by default) 
RADIUS_RU_ADD.ppp_p=       radiuspppprofile;RADIUS_RU_RADIUSPPPPROFILE_ATTR_LABEL;int, radiusPppPasswd;RADIUS_RU_RADIUSPPPPASSWD_ATTR_LABEL;crypt
RADIUS_RU_ADD.slip_p=      radiusSlipprofile;RADIUS_RU_RADIUSSLIPPROFILE_ATTR_LABEL;int, radiusSlipPasswd;RADIUS_RU_RADIUSSLIPPASSWD_ATTR_LABEL;crypt
RADIUS_RU_ADD.login_p=     radiusLoginprofile;RADIUS_RU_RADIUSLOGINPROFILE_ATTR_LABEL;int, radiusLoginPasswd;RADIUS_RU_RADIUSLOGINPASSWD_ATTR_LABEL;crypt
 

# Profiles defined for Remote Access Servers (RAS)
#RADIUS_RAS_PROFILE=       no defined profiles

# Mandatory RAS profile attributes
#RADIUS_RAS_ADD.??=        no defined profiles

# Add object classes (a single objectclass is accepted for every type)
RADIUS_RU_OCLASS=          remoteuser
RADIUS_RAS_OCLASS=         nas

# Radius COMMON to ADD and SEARCH Panels
# Root DN: a single RootDN is accepted for every type
RADIUS_RU_ROOT=            o=airius_remote_users,c=us
RADIUS_RAS_ROOT=           o=airius_ras,c=us

# Naming attributes: a comma (,) separated list is accepted for every type
RADIUS_RU_NAMINGATTR=      cn, uid
RADIUS_RAS_NAMINGATTR=     cn
RADIUS_MAX_FAIL=           4