X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=contrib%2Fopenldap%2Fslapd.conf;h=758afe23e0ff89c916b2ab564786682b39cf08fa;hb=84850a1ffa2349f91543fe848b29449e8da968b7;hp=250a21e7180a3a9a102bf9c75f4e018605806e98;hpb=6894a56d887501dd1d040f547af0a93c04d0971e;p=gosa.git

diff --git a/contrib/openldap/slapd.conf b/contrib/openldap/slapd.conf
index 250a21e71..758afe23e 100644
--- a/contrib/openldap/slapd.conf
+++ b/contrib/openldap/slapd.conf
@@ -23,12 +23,13 @@ include		/etc/ldap/schema/misc.schema
 # to adjust the indexing and acl stuff below!
 include		/etc/ldap/schema/samba.schema
 include		/etc/ldap/schema/pureftpd.schema
-include		/etc/ldap/schema/gohard.schema
 include		/etc/ldap/schema/gofon.schema
+include		/etc/ldap/schema/gosystem.schema
 include		/etc/ldap/schema/goto.schema
 include		/etc/ldap/schema/gosa+samba3.schema
 include		/etc/ldap/schema/gofax.schema
 include		/etc/ldap/schema/goserver.schema
+include		/etc/ldap/schema/goto-mime.schema
 
 # Schema check allows for forcing entries to
 # match schemas for their objectClasses's
@@ -109,54 +110,15 @@ moduleload      back_monitor
 #limits	anonymous	size.soft=500 time.soft=5
 #limits user		size=none time.soft=30
 
-#######################################################################
-# database definitions
-#######################################################################
-
-# Monitor backend
-database	monitor
+access to dn.base=""
+        by * read
 
 access to dn.subtree=cn=Monitor
         by * read
 
 # Access to schema information
-access to dn.subtree=""
-        by dn="cn=ldapadmin,dc=gonicus,dc=de" read
-
-# The backend type, ldbm, is the default standard
-database	bdb
-cachesize       5000
-checkpoint	512 720
-mode		0600
-
-# The base of your directory
-suffix		"dc=gonicus,dc=de"
-
-# Sample password is "tester", generate a new one using the mkpasswd
-# utility and put the string after {crypt}
-rootdn	"cn=ldapadmin,dc=gonicus,dc=de"
-rootpw  {crypt}OuorOLd3VqvC2
-
-# Indexing
-index   default                                                sub
-index   uid,mail                                               eq
-index   gosaMailAlternateAddress,gosaMailForwardingAddress     eq
-index   cn,sn,givenName,ou                                     pres,eq,sub
-index   objectClass                                            pres,eq
-index   uidNumber,gidNumber,memberuid                          eq
-index   gosaSubtreeACL,gosaObject,gosaUser                     pres,eq
-
-# Indexing for Samba 3
-index   sambaSID                                               eq
-index   sambaPrimaryGroupSID                                   eq
-index   sambaDomainName                                        eq
-
-
-# Where the database file are physically stored
-directory	"/var/lib/ldap"
-
-# Save the time that the entry gets modified
-lastmod off
+#access to dn.subtree=""
+#        by * read
 
 # The userPassword/shadow Emtries by default can be
 # changed by the entry owning it if they are authenticated.
@@ -204,11 +166,13 @@ access to dn="ou=incoming,dc=gonicus,dc=de"
 	by dn="cn=terminal-admin,dc=gonicus,dc=de" write
 	by dn="cn=ldapadmin,dc=gonicus,dc=de" write
 	by dn.regex="uid=[^/]+/admin\+(realm=GONICUS.LOCAL)?" write
+	by * none
 
 access to dn.sub="ou=incoming,dc=gonicus,dc=de"
 	by dn="cn=terminal-admin,dc=gonicus,dc=de" write
 	by dn="cn=ldapadmin,dc=gonicus,dc=de" write
 	by dn.regex="uid=[^/]+/admin\+(realm=GONICUS.LOCAL)?" write
+	by * none
 
 # What trees should be readable, depends on your policy. Either
 # use this entry and specify what should be readable, or leave
@@ -224,6 +188,54 @@ access to *
 #	by peername="ip=127\.0\.0\.1" read
 #	by * none
 
+#######################################################################
+# database definitions
+#######################################################################
+
+# Monitor backend
+database	monitor
+
+# The backend type, ldbm, is the default standard
+database	bdb
+cachesize       5000
+mode		0600
+
+# The base of your directory
+suffix		"dc=gonicus,dc=de"
+checkpoint	512 720
+
+# Sample password is "tester", generate a new one using the mkpasswd
+# utility and put the string after {crypt}
+rootdn	"cn=ldapadmin,dc=gonicus,dc=de"
+rootpw  {crypt}OuorOLd3VqvC2
+
+# Indexing
+index   default                                                sub
+index   uid,mail                                               eq
+index   gosaMailAlternateAddress,gosaMailForwardingAddress     eq
+index   cn,sn,givenName,ou                                     pres,eq,sub
+index   objectClass                                            pres,eq
+index   uidNumber,gidNumber,memberuid                          eq
+index   gosaSubtreeACL,gosaObject,gosaUser                     pres,eq
+
+# Indexing for Kolab
+#index	alias							eq,sub
+#index	kolabDeleteFlag						eq
+#index	kolabHomeServer						eq
+#index  member							pres,eq
+
+# Indexing for Samba 3
+index   sambaSID                                               eq
+index   sambaPrimaryGroupSID                                   eq
+index   sambaDomainName                                        eq
+
+
+# Where the database file are physically stored
+directory	"/var/lib/ldap"
+
+# Log modifications and write entryUUID
+lastmod on
+
 
 # Example replication using admin account. This will require taking the
 # out put of this database using slapcat(8C), and then importing that into
@@ -232,7 +244,7 @@ access to *
 # Replication setup
 #replogfile /var/log/ldap-replicalog
 #replica host=ldap-2.gonicus.local
-#	binddn="cn=replicator,dc=gonicus,dc=de bindmethod=simple credentials=secret
+#	binddn="cn=replicator,dc=gonicus,dc=de" bindmethod=simple credentials=secret
 
 # Dummy database for config replication
 #database        shell