Re: slapd + overlay syncprov
Torsten Flammiger wrote:
> wird die Bibliothek auch geladen?
> Auszug aus meiner slapd.conf:
>
> # Where the dynamically loaded modules are stored
> modulepath /usr/lib/ldap
> moduleload back_bdb
Ja. Das steht bei mir auch drin. Nachfolgende die vollständige slapd.conf.
Danke für die Reaktion. Vielleicht gibt es ja eine Unverträglichkeit von
syncprov mit anderen Elementen. Darauf habe ich aber bislang keinen HInweis
gefunden.
Georg
#######################################################################
# Global Directives:
# Features to permit
allow bind_v2
# Schema and objectClass definitions
include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/nis.schema
include /etc/ldap/schema/inetorgperson.schema
#include /etc/ldap/schema/postfix.schema
# Schema check allows for forcing entries to
# match schemas for their objectClasses's
schemacheck on
# Where the pid file is put. The init.d script
# will not stop the server if you change this.
pidfile /var/run/slapd/slapd.pid
# List of arguments that were passed to the server
argsfile /var/run/slapd/slapd.args
# Read slapd.conf(5) for possible values
#loglevel 256
#loglevel 16383
loglevel 0
# Where the dynamically loaded modules are stored
modulepath /usr/lib/ldap
moduleload back_bdb
moduleload back_monitor
#############################
TLSCertificateFile ...
TLSCertificateKeyFile ...
TLSCACertificateFile ...
#############################
#############################
#disallow bind_simple
#disallow bind_anon
#############################
#######################################################################
# Specific Backend Directives for bdb:
backend bdb
checkpoint 512 30
#######################################################################
# Specific Directives for database #1, of type bdb:
database bdb
# The base of your directory in database #1
suffix "dc=behoerdenbrowser,dc=de"
rootdn ...
rootpw ...
# Where the database file are physically stored for database #1
directory "/var/lib/ldap"
# Indexing options for database #1
index
objectClass,member,businessCategory,departmentNumber,mail,entryCSN,entryUUID
eq
index cn,o,ou eq,sub
#overlay glue
#overlay syncprov
syncprov-checkpoint 100 10
syncprov-sessionlog 100
# Save the time that the entry gets modified, for database #1
lastmod on
# Where to store the replica logs for database #1
# replogfile /var/lib/ldap/replog
# These access lines apply to database #1 only
access to attrs=userPassword
by dn="cn=admin..." write
by anonymous auth
by self write
by * none
access to dn.sub="ou=users..."
by dn="cn=admin..." write
by dn="cn=sasl..." read
by anonymous auth
by self write
by * none
#access to dn.exact="cn=admin..."
# by self auth
# by self write
# by * none
access to dn.base="" by * read
# The admin dn has full write access, everyone else
# can read everything.
access to *
by dn="cn=admin,ou=users,dc=behoerdenbrowser,dc=de" write
by users read
by peername.ip=127.0.0.1 read
by peername.ip=88.198.217.228 read
authz-regexp
uid=(.*),cn=digest-md5,cn=auth
ldap:///...
#######################################################################
# Specific Directives for database #2, of type 'other' (can be bdb too):
database monitor
access to dn.subtree=cn=Monitor
by * read
Reply to: