2.1 slapd.conf Master: Difference between revisions
From SambaWiki
No edit summary |
No edit summary |
||
Line 30: | Line 30: | ||
replogfile /var/lib/ldap/replogfile |
replogfile /var/lib/ldap/replogfile |
||
access to attrs=userPassword,sambaLMPassword,sambaNTPassword |
access to attrs=userPassword,sambaLMPassword,sambaNTPassword |
||
by self write |
by self write |
||
by dn="cn=sambaadmin,dc=differentialdesign,dc=org" write |
by dn="cn=sambaadmin,dc=differentialdesign,dc=org" write |
||
by * auth |
by * auth |
||
access to * |
access to * |
||
by self write |
by self write |
Revision as of 05:27, 25 January 2007
2.1: slapd.conf Master
This is the original method for replicating the database to slave ldap servers. We are using the slurpd which has been around for a long time and proven itself to be stable.
This configuration file should work on any version of Openldap.
# /etc/openldap/slapd.conf # using slurpd # LDAP Master include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema include /etc/openldap/schema/samba.schema pidfile /var/run/slapd/slapd.pid argsfile /var/run/slapd/slapd.args database bdb suffix "dc=differentialdesign,dc=org" rootdn "cn=Manager,dc=differentialdesign,dc=org" rootpw Manager directory /var/lib/ldap replica host=node2.differentialdesign.org:389 suffix="dc=differentialdesign,dc=org" binddn="cn=syncuser,dc=differentialdesign,dc=org" bindmethod=simple credentials=SyncUser replogfile /var/lib/ldap/replogfile access to attrs=userPassword,sambaLMPassword,sambaNTPassword by self write by dn="cn=sambaadmin,dc=differentialdesign,dc=org" write by * auth access to * by self write by dn="cn=syncuser,dc=differentialdesign,dc=org" write by dn="cn=sambaadmin,dc=differentialdesign,dc=org" write by dn="cn=mailadmin,dc=differentialdesign,dc=org" write by * auth by * read # Indices to maintain index objectClass eq index cn pres,sub,eq index sn pres,sub,eq index uid pres,sub,eq index displayName pres,sub,eq index uidNumber eq index gidNumber eq index memberUID eq index sambaSID eq index sambaPrimaryGroupSID eq index sambaDomainName eq index default sub