ansible-roles/openldap-server/templates/base-dn.ldif.j2

25 lines
764 B
Django/Jinja

dn: olcDatabase={1}hdb,cn=config
changetype: modify
replace: olcSuffix
olcSuffix: {{ openldap_base_dn }}
dn: olcDatabase={1}hdb,cn=config
changetype: modify
replace: olcRootDN
olcRootDN: cn={{ openldap_admin_user }},{{ openldap_base_dn }}
#dn: olcDatabase={1}hdb,cn=config
#changetype: modify
#replace: olcAccess
#olcAccess: {0}to attrs=userPassword,shadowLastChange by self write by anonymous auth by dn="cn={{ openldap_admin_user }},{{ openldap_base_dn }}" write by * none
#
#dn: olcDatabase={1}hdb,cn=config
#changetype: modify
#replace: olcAccess
#olcAccess: {1}to dn.base="" by * read
#
#dn: olcDatabase={1}hdb,cn=config
#changetype: modify
#replace: olcAccess
#olcAccess: {2}to * by dn="cn={{ openldap_admin_user }},{{ openldap_base_dn }}" write by * read