dn: ou=fusiondirectory,{{ base_dn }}
objectClass: organizationalUnit
ou: fusiondirectory

dn: cn=config,ou=fusiondirectory,{{ base_dn }}
objectClass: fusionDirectoryConf
fdLanguage: {{ language }}
fdTheme: breezy
fdTimezone: {{ timezone }}
fusionConfigMd5: {{ fd_config_hash.stat.md5 }}
fdLdapSizeLimit: 200
fdModificationDetectionAttribute: entryCSN
fdLogging: TRUE
fdSchemaCheck: TRUE
fdEnableSnapshots: TRUE
fdSnapshotBase: ou=snapshots,{{ base_dn }}
fdPasswordDefaultHash: ssha
fdForcePasswordDefaultHash: FALSE
fdPasswordMinLength: 8
fdHandleExpiredAccounts: FALSE
fdLoginAttribute: uid
fdForceSSL: FALSE
fdWarnSSL: TRUE
fdSessionLifeTime: 1800
fdHttpAuthActivated: FALSE
fdHttpHeaderAuthActivated: FALSE
fdHttpHeaderAuthHeaderName: AUTH_USER
fdSslKeyPath: /etc/ldap/ssl/{{ domain }}.key
fdSslCertPath: /etc/ssl/certs/ca-certificates.crt
fdSslCaCertPath: /etc/ldap/ssl/{{ domain }}.crt
fdCasActivated: FALSE
fdCasServerCaCertPath: /etc/ssl/certs/ca-certificates.crt
fdCasHost: localhost
fdCasPort: 443
fdCasContext: /cas
fdAccountPrimaryAttribute: uid
fdCnPattern: %givenName% %sn%
fdStrictNamingRules: FALSE
fdUserRDN: ou=people
fdAclRoleRDN: ou=aclroles
fdRestrictRoleMembers: FALSE
fdSplitPostalAddress: FALSE
fdDisplayErrors: FALSE
fdLdapStats: FALSE
fdDebugLevel: 0
fdListSummary: TRUE
fdAclTabOnObjects: FALSE
fdDisplayHookOutput: FALSE
cn: config