include		/etc/ldap/schema/core.schema
include         /etc/ldap/schema/cosine.schema
include         /etc/ldap/schema/inetorgperson.schema
include         /etc/ldap/schema/nis.schema
include         /etc/ldap/schema/openldap.schema
include         /etc/ldap/schema/qmail.schema
include         /etc/ldap/schema/pureftpd.schema
include         /etc/ldap/schema/horde.schema
include         /etc/ldap/schema/dnsdomain2.schema


pidfile		/var/run/slapd/slapd.pid
argsfile	/var/run/slapd/slapd.args

TLSCACertificateFile /etc/ldap/certs/server.pem
TLSCertificateFile /etc/ldap/certs/server.pem
TLSCertificateKeyFile /etc/ldap/certs/server.pem

sizelimit       500

timelimit       3600

loglevel        conns config sync BER stats stats2

modulepath	/usr/lib/ldap/
moduleload	back_bdb
moduleload	syncprov



overlay syncprov
syncprov-checkpoint 100 10
syncprov-sessionlog 100


backend		bdb
database        bdb
suffix          "o=toto,c=fr"
rootdn          "cn=Manager,o=toto,c=fr"
rootpw		{SSHA}secret
directory       /data/ldap/data
cachesize       1000
schemacheck     on
lastmod		on
index default pres,eq
index uid
index mail,mailAlternateAddress eq
index deliveryMode,accountStatus eq
index associatedDomain eq
index objectclass,entryCSN,entryUUID eq


access to dn.subtree="ou=dnsdomainename,l=tours,o=toto,c=fr"
       by dn.subtree="ou=dnsdomainename,l=tours,o=toto,c=fr" read
       by * auth

access to dn.subtree="ou=ftp_accounts,l=tours,o=toto,c=fr"
       by dn.subtree="ou=ftp_accounts,l=tours,o=toto,c=fr" read
       by * auth

access to dn.subtree="ou=emails_accounts,l=tours,o=toto,c=fr"
       by dn.subtree="ou=emails_accounts,l=tours,o=toto,c=fr" write
       by self write
       by * auth

access to dn.subtree="ou=emails,l=tours,o=toto,c=fr"
       by dn.subtree="ou=emails,l=tours,o=toto,c=fr" write
       by self write
       by * auth