Authentication domain ID
+`--autocreate` `<boolean>` ('default =' `0`)::
+
+Automatically create users if they do not exist.
+
`--base_dn` `\w+=[^,]+(,\s*\w+=[^,]+)*` ::
LDAP base domain name
Path to the client certificate key
+`--client-id` `<string>` ::
+
+OpenID Client ID
+
+`--client-key` `<string>` ::
+
+OpenID Client Key
+
`--comment` `<string>` ::
Description.
LDAP attribute representing a groups name. If not set or found, the first value of the DN will be used as name.
+`--issuer-url` `<string>` ::
+
+OpenID Issuer Url
+
`--mode` `<ldap | ldap+starttls | ldaps>` ('default =' `ldap`)::
LDAP protocol mode.
Use Two-factor authentication.
-`--type` `<ad | ldap | pam | pve>` ::
+`--type` `<ad | ldap | openid | pam | pve>` ::
Realm type.
The objectclasses for users.
+`--username-claim` `<email | subject | username>` ::
+
+OpenID claim used to generate the unique username.
+
`--verify` `<boolean>` ('default =' `0`)::
Verify the server's SSL certificate
Authentication domain ID
+`--autocreate` `<boolean>` ('default =' `0`)::
+
+Automatically create users if they do not exist.
+
`--base_dn` `\w+=[^,]+(,\s*\w+=[^,]+)*` ::
LDAP base domain name
Path to the client certificate key
+`--client-id` `<string>` ::
+
+OpenID Client ID
+
+`--client-key` `<string>` ::
+
+OpenID Client Key
+
`--comment` `<string>` ::
Description.
LDAP attribute representing a groups name. If not set or found, the first value of the DN will be used as name.
+`--issuer-url` `<string>` ::
+
+OpenID Issuer Url
+
`--mode` `<ldap | ldap+starttls | ldaps>` ('default =' `ldap`)::
LDAP protocol mode.