You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

60 lines
1.7 KiB

  1. # Calculate format=ldap chmod=0640 chown=root:ldap append=replace
  2. include /etc/openldap/schema/core.schema
  3. include /etc/openldap/schema/cosine.schema
  4. include /etc/openldap/schema/nis.schema
  5. include /etc/openldap/schema/inetorgperson.schema
  6. include /etc/openldap/schema/misc.schema
  7. #?pkg(net-nds/openldap)<2.4#schemacheck on#pkg#
  8. pidfile /var/run/openldap/slapd.pid
  9. argsfile /var/run/openldap/slapd.arg
  10. # Уровень отладочных сообщений
  11. loglevel 0
  12. allow bind_v2
  13. modulepath /usr/lib/openldap/openldap
  14. # Доступ к аттрибуту userPassword
  15. access to attrs=userPassword
  16. by self write
  17. by dn="#-ld_admin_dn-#" write
  18. by * auth
  19. # Доступ к администратору сервера LDAP
  20. access to dn.base="#-ld_admin_dn-#"
  21. by dn="#-ld_admin_dn-#" write
  22. by * none
  23. # Закрываем доступ к веткам
  24. access to dn.regex=".*,#-ld_services_dn-#"
  25. by dn="#-ld_admin_dn-#" write
  26. by * none
  27. # Доступ ко всем аттрибутам
  28. access to *
  29. by dn="#-ld_admin_dn-#" write
  30. by self write
  31. by * read
  32. # Доступ по умолчанию только для чтения
  33. #?pkg(net-nds/openldap)<2.4#defaultaccess none#pkg#
  34. # Тип базы данных
  35. #?pkg(net-nds/openldap)<2.4#database ldbm#pkg#
  36. #?pkg(net-nds/openldap)>2.4#database bdb#pkg#
  37. suffix "#-ld_base_dn-#"
  38. rootdn "#-ld_temp_dn-#"
  39. rootpw #-ld_temp_hash-#
  40. checkpoint 1024 5
  41. cachesize 10000
  42. # Размер ответа на запрос
  43. sizelimit unlimited
  44. directory /var/lib/openldap-data
  45. index objectClass eq
  46. index cn pres,sub,eq
  47. index sn pres,sub,eq
  48. index uid pres,sub,eq
  49. index uidNumber eq
  50. index gidNumber eq
  51. index default sub