forked from ISTI-ansible-roles/ansible-roles
38 lines
1.0 KiB
Plaintext
38 lines
1.0 KiB
Plaintext
|
dn: cn=module,cn=config
|
||
|
objectClass: olcModuleList
|
||
|
cn: module
|
||
|
olcModulePath: /usr/lib/ldap
|
||
|
olcModuleLoad: syncprov
|
||
|
|
||
|
# Accesslog database definitions
|
||
|
dn: olcDatabase={2}hdb,cn=config
|
||
|
objectClass: olcDatabaseConfig
|
||
|
objectClass: olcHdbConfig
|
||
|
olcDatabase: {2}hdb
|
||
|
olcDbDirectory: /var/lib/ldap/accesslog
|
||
|
olcSuffix: cn=accesslog
|
||
|
olcRootDN: cn=admin,dc=d4science,dc=org
|
||
|
olcDbIndex: default eq
|
||
|
olcDbIndex: entryCSN,objectClass,reqEnd,reqResult,reqStart
|
||
|
|
||
|
# Accesslog db syncprov.
|
||
|
dn: olcOverlay=syncprov,olcDatabase={2}hdb,cn=config
|
||
|
changetype: add
|
||
|
objectClass: olcOverlayConfig
|
||
|
objectClass: olcSyncProvConfig
|
||
|
olcOverlay: syncprov
|
||
|
olcSpNoPresent: TRUE
|
||
|
olcSpReloadHint: TRUE
|
||
|
|
||
|
# accesslog overlay definitions for primary db
|
||
|
dn: olcOverlay=accesslog,olcDatabase={1}hdb,cn=config
|
||
|
objectClass: olcOverlayConfig
|
||
|
objectClass: olcAccessLogConfig
|
||
|
olcOverlay: accesslog
|
||
|
olcAccessLogDB: cn=accesslog
|
||
|
olcAccessLogOps: writes
|
||
|
olcAccessLogSuccess: TRUE
|
||
|
# scan the accesslog DB every day, and purge entries older than 2 days
|
||
|
olcAccessLogPurge: {{ openldap_accesslog_purge }}
|
||
|
|