crans
/
ansible
mirror of http://gitlab.adm.crans.org/nounous/ansible.git
19
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge branch 'ldap' into 'newinfra' 

[slapd] uid musts start with _

See merge request nounous/ansible!142
certbot_on_virtu
_benjamin 2020-12-29 16:25:52 +01:00
parent 3cff741af6 f7b85d6214
commit 2ad6728a4d
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
roles/slapd/templates/ldap/slapd.conf.j2
View File

@ -29,6 +29,13 @@ moduleload auditlog
overlay auditlog overlay auditlog
auditlog /var/log/openldap/auditlog.log auditlog /var/log/openldap/auditlog.log
moduleload constraint
overlay constraint
constraint_attribute description regex ^(dhcp|dns|dns-primary|dns-secondary|ftp|gitlab|miroir|ntp|pve|radius)$
restrict=ldap:///ou=hosts,dc=crans,dc=org??one?(objectClass=device)
constraint_attribute uid regex ^_
restrict=ldap:///ou=passwd,dc=crans,dc=org??one?(objectClass=posixAccount)
moduleload syncprov moduleload syncprov
{% endif %} {% endif %}