Public Repository

Last pushed: 9 months ago
Short Description
Short description is empty for this repo.
Full Description

Docker container for running OneLogin LDAP Connector

Environment variables:

ONELOGIN_TOKEN (required) - the Installation Token given on the Basic tab when you registered your LDAP directory on OneLogin

ONELOGIN_SYNC_INTERVAL (required) - the number of seconds that the connector should wait between a user synchronisation action

ONELOGIN_SYNC_THREADS (required) - the number of threads working during the user synchronization. You can set this to a maximum value of 4. If you set it to a value greater than 4, you will encounter an error.

ONELOGIN_BASE_DN - by default, the connector chooses the first naming context that starts with "dc" as the base dn; if you want to specify another base_dn to work with, use this parameter. Example: "dc=onelogin,dc=com"

ONELOGIN_OBJECT_CLASSES - by default, the connector chooses "person" and "user" (and their children) as the object classes used to retrieve the fields of interest. You can use this parameter to override this behavior by passing a comma separated list. (Note: The connector will use the classes passed and their children too). Example: "person, user, inetOrgPerson, organizationalPerson, posixAccount, shadowAccount, extensibleObject , myClassX, myClassY"

ONELOGIN_OPERATIONAL_ATTRIBS - within an ldap server, there are certain fields that do not appear within the schemas, overlay fields like "pwdAccountLockedTime" are a good example of this. If you want to be able to use them, you must add them as a comma separated list using this parameter. Example: "pwdAccountLockedTime, someOtherField"

ONELOGIN_PASSWORD_CRYPT - defines the cryptographic method used to store new passwords to your Ldap Server when a user changes his password on the OneLogin Web UI. Currently only SHA an SSHA are supported, SHA is the default value.

ONELOGIN_JAVA_OPTS - java options for running ldap connector. Default: "-XX:-UseGCOverheadLimit -Xmx1024M -Xms1024M"

Docker Pull Command

Comments (0)