# # # # STANDALONE SLAPD CONFIGURATION FILE # # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. # ucdata-path /opt/openldap/share/openldap/ucdata include /opt/openldap/etc/openldap/schema/core.schema include /opt/openldap/etc/openldap/schema/cosine.schema include /opt/openldap/etc/openldap/schema/inetorgperson.schema include /opt/openldap/etc/openldap/schema/nis.schema pidfile /opt/cso/ldap/var/slapd.pid argsfile /opt/cso/ldap/var/slapd.args sizelimit 1000000 timelimit 360 idletimeout 420 threads 32 # To turn logging off set loglevel to 0 then stop/start ldap server loglevel 0 allow bind_v2 # If this LDAP server is to be used standalone then # the access area should be set to the following: access to dn.regex=".*" by self write by dn.exact="uid=Usr,o=ORG" write by * write serverID 1 ####################################################################### # bdb active database definitions ####################################################################### database bdb suffix "o=ORG" rootdn "uid=Usr,o=ORG" rootpw password1 directory /opt/cso/ldap/db # cleartext passwords, especially for the rootdn, should # be avoid. See slapd.conf(5) for details. cachesize 10000 index cn pres,eq,sub index sn pres,eq,sub index givenName pres,eq,sub index uid eq index objectclass,entryCSN,entryUUID eq syncrepl rid=1 provider=ldap://:389/ type=refreshAndPersist interval=00:00:00:10 retry="30 +" searchbase="o=ORG" filter="(objectclass=*)" scope=sub attrs="*,+" sizelimit="unlimited" timelimit="unlimited" schemachecking=off bindmethod=simple binddn="uid=Usr,o=ORG" credentials=password1 mirrormode on overlay syncprov syncprov-checkpoint 100 1 syncprov-sessionlog 100