database                ldap
readonly                yes
protocol-version        3
#rebind-as-user
acl-bind       bindmethod=simple  binddn="CN=serviceuser,OU=Service Accounts,OU=Users,DC=fjfi,DC=cvut,DC=cz"  credentials="ahoj"
idassert-bind  bindmethod=simple  binddn="CN=serviceuser,OU=Service Accounts,OU=Users,DC=fjfi,DC=cvut,DC=cz"  credentials="ahoj"
#idassert-authzFrom "dn.exact:cn=admin,dc=example,dc=com"
#idassert-authzFrom "cn=adm,dc=ad,dc=xxx,dc=cz"

uri                     "ldaps://ldap.fjfi.cvut.cz:636"
suffix                  "DC=fjfi,DC=cvut,DC=cz"
overlay                 rwm
rwm-map                 attribute       uid     sAMAccountName
rwm-map                 attribute       mail    proxyAddresses


rootdn cn=admin-test,dc=fjfi,dc=cvut,dc=cz
rootpw moje