Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
documentation:2.1:cli_examples [2020/04/15 15:02]
coudot [Command Line Interface (lemonldap-ng-cli) examples]
documentation:2.1:cli_examples [2020/04/23 16:33] (current)
coudot
Line 204: Line 204:
         ldapGroupAttributeNameUser dn \         ldapGroupAttributeNameUser dn \
         ldapGroupRecursive 1         ldapGroupRecursive 1
 +</​code>​
 +
 +===== Configure CAS Identity Provider =====
 +
 +You just have to enable the CAS server feature, and you can set the access control policy (see [[idpcas#​configuring_the_cas_service|CAS service options]]):
 +<​code>​
 +/​usr/​share/​lemonldap-ng/​bin/​lemonldap-ng-cli -yes 1 \
 +    set \
 +        issuerDBCASActivation 1 \
 +        casAccessControlPolicy error
 +</​code>​
 +
 +===== Register a CAS application =====
 +
 +This is only required if your access control policy is not ''​none''​.
 +
 +In this example we have:
 +  * App configuration key: testapp
 +  * App service URL: https://​testapp.example.com/​
 +  * App exported attribute: mail and cn
 +
 +<​code>​
 +/​usr/​share/​lemonldap-ng/​bin/​lemonldap-ng-cli -yes 1 \
 +    addKey \
 +        casAppMetaDataExportedVars/​testapp mail mail \
 +        casAppMetaDataExportedVars/​testapp cn cn
 +        casAppMetaDataOptions/​testapp casAppMetaDataOptionsService '​https://​testapp.example.com/'​
 </​code>​ </​code>​