# The external auth system
external_auth:
  ldap:
    GP_APP_JENKINS%:
        - 'test.*'
        - 'grains.*'
        - 'pillar.*'
    pradermecker:
      - 'G@hostname:middleware': (1)
        - '.*'
        - '@runner' (2)
        - '@wheel'
        - '@jobs'
    jfroche:
        - 'saltutil.*'
        - '@runner'
        - '@wheel'
        - '@jobs'

auth.ldap.basedn: OU=ACCOUNTS,OU=CIRB-CIBG,DC=ad,DC=cirb,DC=lan
auth.ldap.binddn: CN=<%= @ldap_name="" %="">,OU=Saltmasters,OU=Apps,OU=Service_Groups_Accounts
auth.ldap.bindpw: <%= @ldap_pwd="" %="">
auth.ldap.filter: (sAMAccountName=)
auth.ldap.port: 389
auth.ldap.server: svidscavw003.prd.srv.cirb.lan
auth.ldap.tls: False
auth.ldap.no_verify: True
auth.ldap.activedirectory: True
auth.ldap.groupclass: group
auth.ldap.accountattributename: sAMAccountName
auth.ldap.persontype: person