2.2.2 slapd.conf Slave delta-syncrepl Openldap2.3: Difference between revisions
From SambaWiki
No edit summary |
No edit summary |
||
(2 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
2.2.2: slapd.conf slave delta-syncrepl Openldap2.3 |
|||
# slapd.conf delta synrepl Openldap2.3 |
|||
# LDAP Consumer |
|||
include /etc/openldap/schema/core.schema |
|||
include /etc/openldap/schema/cosine.schema |
|||
include /etc/openldap/schema/inetorgperson.schema |
|||
include /etc/openldap/schema/nis.schema |
|||
include /etc/openldap/schema/samba.schema |
|||
pidfile /var/run/slapd/slapd.pid |
|||
argsfile /var/run/slapd/slapd.args |
|||
database bdb |
|||
suffix "dc=differentialdesign,dc=org" |
|||
directory /var/lib/ldap |
|||
rootdn "cn=Manager,dc=differentialdesign,dc=org" |
|||
rootpw Manager |
|||
# syncrepl directives |
|||
syncrepl rid=0 |
|||
provider=ldap://node1.differentialdesign.org:389 |
|||
bindmethod=simple |
|||
binddn="cn=syncuser,dc=differentialdesign,dc=org" |
|||
credentials=SyncUser |
|||
searchbase="dc=differentialdesign,dc=org" |
|||
logbase="cn=accesslog" |
|||
logfilter="(&(objectClass=auditWriteObject)(reqResult=0))" |
|||
schemachecking=on |
|||
type=refreshAndPersist |
|||
retry="60 +" |
|||
syncdata=accesslog |
|||
access to attrs=userPassword |
|||
by dn="cn=sambaadmin,dc=differentialdesign,dc=org" read |
|||
by dn="cn=syncuser,dc=differentialdesign,dc=org" write |
|||
by * auth |
|||
access to attrs=sambaLMPassword,sambaNTPassword |
|||
by dn="cn=sambaadmin,dc=differentialdesign,dc=org" read |
|||
by dn="cn=syncuser,dc=differentialdesign,dc=org" write |
|||
access to * |
|||
by dn="cn=syncuser,dc=differentialdesign,dc=org" write |
|||
by * read |
|||
updateref ldap://node1.differentialdesign.org |
|||
# Indices to maintain |
|||
index objectClass eq |
|||
index cn pres,sub,eq |
|||
index sn pres,sub,eq |
|||
index uid pres,sub,eq |
|||
index displayName pres,sub,eq |
|||
index uidNumber eq |
|||
index gidNumber eq |
|||
index memberUID eq |
|||
index sambaSID eq |
|||
index sambaPrimaryGroupSID eq |
|||
index sambaDomainName eq |
|||
index default sub |