--On Friday, August 21, 2020 2:56 PM -0500 David Arnold dar@xoe.solutions wrote:
Since the paths don't actually change (and I have no means to make them change), can I do a dummy modification that would trigger cert reloading?
Yeah, just do a replace op, like:
ldapmodify ... dn: cn=config changetype: modify replace: olcTLS.. olcTLS...: original value
For the slapd.conf configuration to enable the cn=config db just have:
database config rootpw somepassword
and then you can bind to it w/ that password. Alternatively, you can set up an authz-regexp, etc.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com