From d59550bf929a3013edff15b6a8060d9724542417 Mon Sep 17 00:00:00 2001 From: cajus Date: Tue, 23 May 2006 06:59:55 +0000 Subject: [PATCH] Updated sample slapd.conf to allow base="" reads for schema information git-svn-id: https://oss.gonicus.de/repositories/gosa/trunk@3497 594d385d-05f5-0310-b6e9-bd551577e9d8 --- contrib/openldap/slapd.conf | 85 +++++++++++++++++++------------------ 1 file changed, 44 insertions(+), 41 deletions(-) diff --git a/contrib/openldap/slapd.conf b/contrib/openldap/slapd.conf index 58d62460f..e8cf0484c 100644 --- a/contrib/openldap/slapd.conf +++ b/contrib/openldap/slapd.conf @@ -110,12 +110,8 @@ moduleload back_monitor #limits anonymous size.soft=500 time.soft=5 #limits user size=none time.soft=30 -####################################################################### -# database definitions -####################################################################### - -# Monitor backend -database monitor +access to dn.base="" + by * read access to dn.subtree=cn=Monitor by * read @@ -124,41 +120,6 @@ access to dn.subtree=cn=Monitor access to dn.subtree="" by dn="cn=ldapadmin,dc=gonicus,dc=de" read -# The backend type, ldbm, is the default standard -database bdb -cachesize 5000 -checkpoint 512 720 -mode 0600 - -# The base of your directory -suffix "dc=gonicus,dc=de" - -# Sample password is "tester", generate a new one using the mkpasswd -# utility and put the string after {crypt} -rootdn "cn=ldapadmin,dc=gonicus,dc=de" -rootpw {crypt}OuorOLd3VqvC2 - -# Indexing -index default sub -index uid,mail eq -index gosaMailAlternateAddress,gosaMailForwardingAddress eq -index cn,sn,givenName,ou pres,eq,sub -index objectClass pres,eq -index uidNumber,gidNumber,memberuid eq -index gosaSubtreeACL,gosaObject,gosaUser pres,eq - -# Indexing for Samba 3 -index sambaSID eq -index sambaPrimaryGroupSID eq -index sambaDomainName eq - - -# Where the database file are physically stored -directory "/var/lib/ldap" - -# Make mods (writes entryUuid for kolab...) -lastmod on - # The userPassword/shadow Emtries by default can be # changed by the entry owning it if they are authenticated. # Others should not be able to see it, except the admin @@ -225,6 +186,48 @@ access to * # by peername="ip=127\.0\.0\.1" read # by * none +####################################################################### +# database definitions +####################################################################### + +# Monitor backend +database monitor + +# The backend type, ldbm, is the default standard +database bdb +cachesize 5000 +checkpoint 512 720 +mode 0600 + +# The base of your directory +suffix "dc=gonicus,dc=de" + +# Sample password is "tester", generate a new one using the mkpasswd +# utility and put the string after {crypt} +rootdn "cn=ldapadmin,dc=gonicus,dc=de" +rootpw {crypt}OuorOLd3VqvC2 + +# Indexing +index default sub +index uid,mail eq +index gosaMailAlternateAddress,gosaMailForwardingAddress eq +index cn,sn,givenName,ou pres,eq,sub +index objectClass pres,eq +index uidNumber,gidNumber,memberuid eq +index gosaSubtreeACL,gosaObject,gosaUser pres,eq + +# Indexing for Samba 3 +index sambaSID eq +index sambaPrimaryGroupSID eq +index sambaDomainName eq + + +# Where the database file are physically stored +directory "/var/lib/ldap" + +# Make mods (writes entryUuid for kolab...) +lastmod on + # Example replication using admin account. This will require taking the # out put of this database using slapcat(8C), and then importing that into -- 2.30.2