ldap:
  host: ad.example.com
  port: 636
  use_ssl: true
  bind_dn: CN=svc_ad,OU=Service,DC=example,DC=com
  bind_password: ''
  base_dn: DC=example,DC=com
  people_base_dn: OU=People,DC=example,DC=com
  groups_base_dn: OU=linux,OU=Groups,DC=example,DC=com
  upn_suffix: example.com
  user_object_classes:
  - top
  - person
  - organizationalPerson
  - user
  - posixAccount
  user_rdn_attr: CN
defaults:
  base_group: staff
  initial_uid_number: 2106
  initial_password: 1234.com
paths:
  uid_state_file: state/uid_state.json
  group_gid_map_file: state/group_gid_map.yaml
  batch_result_file: state/last_batch_result.csv
  log_file: state/run.log
behavior:
  skip_if_user_exists: true
  skip_missing_optional_groups: true
  dry_run: false
  require_ldaps_for_password: true
groups_gid_map:
  staff: 3000