From 170fb7bd0858e689f1e04e6f51ff9c494555e820 Mon Sep 17 00:00:00 2001
From: Andrea Dell'Amico <adellam@isti.cnr.it>
Date: Sat, 3 Mar 2018 17:41:33 +0100
Subject: [PATCH] library/roles/openldap-server/files/olcSSL.ldif: Change the
 syntax of the entries. The old one failed on the slave server.

---
 openldap-server/files/olcSSL.ldif | 21 ++++++++++++++-------
 1 file changed, 14 insertions(+), 7 deletions(-)

diff --git a/openldap-server/files/olcSSL.ldif b/openldap-server/files/olcSSL.ldif
index 774febc8..4c390026 100644
--- a/openldap-server/files/olcSSL.ldif
+++ b/openldap-server/files/olcSSL.ldif
@@ -1,13 +1,20 @@
 dn: cn=config
-add: olcTLSCACertificateFile
+changetype: modify
+replace: olcTLSCACertificateFile
 olcTLSCACertificateFile: /etc/pki/openldap/chain.pem
--
-add: olcTLSCertificateKeyFile
+
+dn: cn=config
+changetype: modify
+replace: olcTLSCertificateKeyFile
 olcTLSCertificateKeyFile: /etc/pki/openldap/privkey.pem
--
-add: olcTLSCertificateFile
+
+dn: cn=config
+changetype: modify
+replace: olcTLSCertificateFile
 olcTLSCertificateFile: /etc/pki/openldap/cert.pem
--
-add: olcTLSCACertificatePath
+
+dn: cn=config
+changetype: modify
+replace: olcTLSCACertificatePath
 olcTLSCACertificatePath: /etc/ssl/certs