API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 1st, 2013
49
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.66 KB | None | 0 0
raw download clone embed print report
  1. ################################## MASTER OPENLDAP ####################
  2. #######################################################################
  3. # slapd.conf
  4. #######################################################################
  5.  
  6. include /etc/openldap/schema/core.schema
  7. include /etc/openldap/schema/cosine.schema
  8. include /etc/openldap/schema/nis.schema
  9. include /etc/openldap/schema/inetorgperson.schema
  10.  
  11. include /etc/openldap/slapd.acl
  12.  
  13. modulepath /usr/lib/openldap
  14. moduleload back_hdb.la
  15. moduleload syncprov.la
  16. moduleload back_monitor.la
  17. moduleload back_ldap.la
  18.  
  19. pidfile /var/run/openldap/slapd.pid
  20. argsfile /var/run/openldap/slapd.args
  21.  
  22. loglevel sync stats
  23.  
  24. database hdb
  25. suffix "dc=mydomain,dc=org"
  26. directory /var/lib/ldap
  27.  
  28. checkpoint 1024 5
  29. cachesize 10000
  30. idlcachesize 10000
  31.  
  32. index objectClass eq
  33. # rest of indexes
  34. index default sub
  35.  
  36. rootdn "cn=admin,dc=mydomain,dc=org"
  37. rootpw mydomain
  38.  
  39. # syncprov specific indexing
  40. index entryCSN eq
  41. index entryUUID eq
  42.  
  43. # syncrepl Provider for primary db
  44. overlay syncprov
  45. syncprov-checkpoint 1000 60
  46.  
  47. # Let the replica DN have limitless searches
  48. limits dn.exact="cn=replicator,dc=mydomain,dc=org" time.soft=unlimited time.hard=unlimited size.soft=unlimited size.hard=unlimited
  49.  
  50. database monitor
  51.  
  52. database config
  53. rootpw mydomain
  54.  
  55. database ldap
  56. # ignore conflicts with other databases, as we need to push out to same suffix
  57. hidden on
  58. suffix "dc=mydomain,dc=org"
  59. rootdn "cn=slapd-ldap"
  60. uri ldap://192.168.2.28:389/
  61.  
  62. lastmod on
  63.  
  64. # We don't need any access to this DSA
  65. restrict all
  66.  
  67. acl-bind bindmethod=simple
  68. binddn="cn=replicator,dc=mydomain,dc=org"
  69. credentials=testing
  70.  
  71. syncrepl rid=001
  72. provider=ldap://localhost:389/
  73. binddn="cn=replicator,dc=mydomain,dc=org"
  74. bindmethod=simple
  75. credentials=testing
  76. searchbase="dc=mydomain,dc=org"
  77. type=refreshAndPersist
  78. retry="5 5 300 5"
  79.  
  80. overlay syncprov
  81.  
  82.  
  83. ###########################################################
  84. ## slapd.acl ###
  85. ###########################################################
  86.  
  87. access to * by dn.base="cn=replicator,dc=mydomain,dc=org" write by * break
  88.  
  89. access to dn.base="" by * read
  90.  
  91. access to dn.base="cn=Subschema" by * read
  92.  
  93. access to dn.subtree="cn=Monitor" by dn.exact="uid=admin,dc=mydomain,dc=org" write by users read by * none
  94.  
  95. access to * by self write by * read
  96.  
  97. ###########################################################
  98. ## file.ldif ###
  99. ###########################################################
  100.  
  101. dn: dc=mydomain,dc=org
  102. objectClass: dcObject
  103. objectClass: organization
  104. dc: mydomain
  105. o : mydomain
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!