nss_srv_domain lancs.local
base ou=University,dc=LANCS,dc=LOCAL
timelimit 120
bind_policy soft
idle_timelimit 3600
use_sasl on
sasl_secprops maxssf=0
krb5_ccname FILE:/tmp/.ldapcache
nss_paged_results yes
nss_base_passwd ou=Users,ou=University,dc=LANCS,dc=LOCAL
nss_base_group ou=Groups,ou=University,dc=LANCS,dc=LOCAL
nss_map_attribute   uid           sAMAccountName
nss_map_attribute   shadowLastChange pwdLastSet
nss_map_attribute   homeDirectory unixHomeDirectory
nss_map_attribute   uniqueMember  member
nss_map_attribute   gecos         displayName
nss_map_objectclass posixAccount  User
nss_map_objectclass shadowAccount User
nss_map_objectclass posixGroup    Group
nss_schema rfc2307bis
nss_initgroups backlink
nss_getgrent_skipmembers yes
nss_initgroups_ignoreusers root,ldap,named,avahi,haldaemon,dbus,radvd,tomcat,radiusd,news,mailman,nscd
# PAM settings
pam_login_attribute sAMAccountName
pam_filter objectclass=User
pam_min_uid 500