ldap:
  host: "ad.example.com"
  port: 636
  use_ssl: true
  bind_dn: "CN=svc_ad,OU=Service,DC=example,DC=com"
  bind_password: ""
  base_dn: "DC=example,DC=com"
  people_base_dn: "OU=People,DC=example,DC=com"
  groups_base_dn: "OU=linux,OU=Groups,DC=example,DC=com"
  upn_suffix: "example.com"
  user_object_classes:
    - top
    - person
    - organizationalPerson
    - user
    - posixAccount
  user_rdn_attr: "CN"

defaults:
  base_group: "staff"
  initial_uid_number: 2106
  initial_password: "1234.com"

paths:
  uid_state_file: "state/uid_state.json"
  group_gid_map_file: "state/group_gid_map.yaml"
  batch_result_file: "state/last_batch_result.csv"
  log_file: "state/run.log"

behavior:
  skip_if_user_exists: true
  skip_missing_optional_groups: true
  dry_run: false
  require_ldaps_for_password: true