forked from ISTI-ansible-roles/ansible-roles
38 lines
1.0 KiB
Django/Jinja
38 lines
1.0 KiB
Django/Jinja
dn: cn=module,cn=config
|
|
objectClass: olcModuleList
|
|
cn: module
|
|
olcModulePath: /usr/lib/ldap
|
|
olcModuleLoad: syncprov
|
|
|
|
# Accesslog database definitions
|
|
dn: olcDatabase={2}hdb,cn=config
|
|
objectClass: olcDatabaseConfig
|
|
objectClass: olcHdbConfig
|
|
olcDatabase: {2}hdb
|
|
olcDbDirectory: /var/lib/ldap/accesslog
|
|
olcSuffix: cn=accesslog
|
|
olcRootDN: cn=admin,dc=d4science,dc=org
|
|
olcDbIndex: default eq
|
|
olcDbIndex: entryCSN,objectClass,reqEnd,reqResult,reqStart
|
|
|
|
# Accesslog db syncprov.
|
|
dn: olcOverlay=syncprov,olcDatabase={2}hdb,cn=config
|
|
changetype: add
|
|
objectClass: olcOverlayConfig
|
|
objectClass: olcSyncProvConfig
|
|
olcOverlay: syncprov
|
|
olcSpNoPresent: TRUE
|
|
olcSpReloadHint: TRUE
|
|
|
|
# accesslog overlay definitions for primary db
|
|
dn: olcOverlay=accesslog,olcDatabase={1}hdb,cn=config
|
|
objectClass: olcOverlayConfig
|
|
objectClass: olcAccessLogConfig
|
|
olcOverlay: accesslog
|
|
olcAccessLogDB: cn=accesslog
|
|
olcAccessLogOps: writes
|
|
olcAccessLogSuccess: TRUE
|
|
# scan the accesslog DB every day, and purge entries older than 2 days
|
|
olcAccessLogPurge: {{ openldap_accesslog_purge }}
|
|
|