From e8b905cd0b96615cec593ff7437a70381ae893af Mon Sep 17 00:00:00 2001 From: Georg Pfuetzenreuter Date: Sat, 28 Jan 2023 00:19:42 +0100 Subject: salt.master: increase LDAP scope Likely needed as it does not support searching a more fine grained base DN. Signed-off-by: Georg Pfuetzenreuter --- pillar/role/salt/master.sls | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'pillar/role/salt') diff --git a/pillar/role/salt/master.sls b/pillar/role/salt/master.sls index 058992b..79c49fb 100644 --- a/pillar/role/salt/master.sls +++ b/pillar/role/salt/master.sls @@ -70,7 +70,7 @@ salt: auth.ldap.server: ${'secret_salt:master:auth.ldap.server'} auth.ldap.port: ${'secret_salt:master:auth.ldap.port'} auth.ldap.tls: True - auth.ldap.scope: 0 + auth.ldap.scope: 2 auth.ldap.accountattributename: ${'secret_salt:master:auth.ldap.accountattributename'} auth.ldap.groupou: ${'secret_salt:master:auth.ldap.groupou'} auth.ldap.groupclass: ${'secret_salt:master:auth.ldap.groupclass'} -- cgit v1.2.3