IPAenv.xml

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
<Objs Version="1.1.0.1" xmlns="http://schemas.microsoft.com/powershell/2004/04">
  <Obj RefId="0">
    <TN RefId="0">
      <T>System.Management.Automation.PSCustomObject</T>
      <T>System.Object</T>
    </TN>
    <MS>
      <S N="container_virtual">cn=virtual operations,cn=etc</S>
      <S N="container_caacl">cn=caacls,cn=ca</S>
      <S N="container_deleteuser">cn=deleted users,cn=accounts,cn=provisioning</S>
      <S N="container_hbacservice">cn=hbacservices,cn=hbac</S>
      <S N="container_certprofile">cn=certprofiles,cn=ca</S>
      <B N="in_tree">false</B>
      <S N="container_trusts">cn=trusts</S>
      <S N="container_views">cn=views,cn=accounts</S>
      <S N="container_policylinks">cn=policylinks,cn=configs,cn=policies</S>
      <B N="validate_api">false</B>
      <B N="fallback">true</B>
      <I32 N="ca_port">80</I32>
      <S N="container_ca">cn=cas,cn=ca</S>
      <S N="container_topology">cn=topology,cn=ipa,cn=etc</S>
      <S N="tls_ca_cert">/etc/ipa/ca.crt</S>
      <S N="tls_version_min">tls1.0</S>
      <S N="logdir">/var/log/ipa</S>
      <S N="container_hbacservicegroup">cn=hbacservicegroups,cn=hbac</S>
      <S N="container_radiusproxy">cn=radiusproxy</S>
      <S N="bin">/</S>
      <S N="ca_host">yourIPA.domain.tld</S>
      <S N="container_locations">cn=locations,cn=etc</S>
      <B N="prompt_all">false</B>
      <S N="container_privilege">cn=privileges,cn=pbac</S>
      <S N="container_realm_domains">cn=Realm Domains,cn=ipa,cn=etc</S>
      <S N="container_certmap">cn=certmap</S>
      <Nil N="kinit_lifetime" />
      <S N="confdir">/etc/ipa</S>
      <B N="force_schema_check">false</B>
      <S N="server">yourIPA.domain.tld</S>
      <S N="container_sudocmdgroup">cn=sudocmdgroups,cn=sudo</S>
      <S N="container_applications">cn=applications,cn=configs,cn=policies</S>
      <S N="mode">production</S>
      <S N="container_group">cn=groups,cn=accounts</S>
      <B N="debug">false</B>
      <S N="container_otp">cn=otp</S>
      <B N="in_server">true</B>
      <I32 N="ca_agent_port">443</I32>
      <S N="domain">DOMAIN.TLD</S>
      <S N="container_accounts">cn=accounts</S>
      <S N="container_user">cn=users,cn=accounts</S>
      <I32 N="recommended_max_agmts">4</I32>
      <S N="container_masters">cn=masters,cn=ipa,cn=etc</S>
      <I32 N="ca_ee_port">443</I32>
      <S N="home">/</S>
      <S N="container_rolegroup">cn=roles,cn=accounts</S>
      <S N="ipalib">/usr/lib/python2.7/dist-packages/ipalib</S>
      <S N="container_netgroup">cn=ng,cn=alt</S>
      <S N="container_ranges">cn=ranges,cn=etc</S>
      <S N="container_service">cn=services,cn=accounts</S>
      <S N="version">4.6.90.pre1+git20180411</S>
      <B N="fips_mode">false</B>
      <S N="container_automount">cn=automount</S>
      <I32 N="http_timeout">30</I32>
      <S N="api_version">2.229</S>
      <B N="delegate">false</B>
      <S N="basedn">dc=sec,dc=orange</S>
      <S N="rpc_protocol">jsonrpc</S>
      <B N="webui_prod">true</B>
      <S N="host">yourIPA.domain.tld</S>
      <S N="container_dna_posix_ids">cn=posix-ids,cn=dna,cn=ipa,cn=etc</S>
      <S N="dot_ipa">/.ipa</S>
      <S N="context">server</S>
      <B N="config_loaded">true</B>
      <S N="container_adtrusts">cn=ad,cn=trusts</S>
      <I32 N="startup_timeout">300</I32>
      <S N="container_permission">cn=permissions,cn=pbac</S>
      <S N="container_policies">cn=policies</S>
      <I32 N="verbose">0</I32>
      <S N="container_policygroups">cn=policygroups,cn=configs,cn=policies</S>
      <S N="container_hbac">cn=hbac</S>
      <S N="container_s4u2proxy">cn=s4u2proxy,cn=etc</S>
      <S N="container_host">cn=computers,cn=accounts</S>
      <Nil N="log" />
      <S N="container_sysaccounts">cn=sysaccounts,cn=etc</S>
      <S N="script">/mod_wsgi</S>
      <S N="jsonrpc_uri">https://yourIPA.domain.tld/ipa/json</S>
      <S N="container_automember">cn=automember,cn=etc</S>
      <S N="container_dns">cn=dns</S>
      <S N="container_roles">cn=roles,cn=policies</S>
      <S N="site_packages">/usr/lib/python2.7/dist-packages</S>
      <S N="container_dna">cn=dna,cn=ipa,cn=etc</S>
      <S N="container_sudorule">cn=sudorules,cn=sudo</S>
      <Nil N="ca_install_port" />
      <Nil N="env_confdir" />
      <S N="container_sudocmd">cn=sudocmds,cn=sudo</S>
      <B N="plugins_on_demand">false</B>
      <B N="enable_ra">false</B>
      <Nil N="ca_agent_install_port" />
      <B N="interactive">true</B>
      <S N="container_custodia">cn=custodia,cn=ipa,cn=etc</S>
      <S N="nss_dir">/etc/ipa/nssdb</S>
      <S N="container_cifsdomains">cn=ad,cn=etc</S>
      <S N="container_stageuser">cn=staged users,cn=accounts,cn=provisioning</S>
      <S N="conf">/etc/ipa/server.conf</S>
      <B N="skip_version_check">false</B>
      <S N="realm">DOMAIN.TLD</S>
      <S N="container_selinux">cn=usermap,cn=selinux</S>
      <S N="ldap_uri">ldapi://%2fvar%2frun%2fslapd-SEC-ORANGE.socket</S>
      <S N="xmlrpc_uri">https://yourIPA.domain.tld/ipa/xml</S>
      <S N="tls_version_max">tls1.2</S>
      <Nil N="ca_ee_install_port" />
      <S N="conf_default">/etc/ipa/default.conf</S>
      <Nil N="ra_plugin" />
      <S N="container_dnsservers">cn=servers,cn=dns</S>
      <S N="container_hostgroup">cn=hostgroups,cn=accounts</S>
      <I32 N="dogtag_version">9</I32>
      <B N="startup_traceback">false</B>
      <I32 N="wait_for_dns">0</I32>
      <S N="container_configs">cn=configs,cn=policies</S>
      <S N="mount_ipa">/ipa/</S>
      <S N="container_certmaprules">cn=certmaprules,cn=certmap</S>
      <S N="container_vault">cn=vaults,cn=kra</S>
    </MS>
  </Obj>
</Objs>