loglevel 0 include /home/data/samba/git/samba/source/st/dc/private/ldap/backend-schema.schema pidfile /home/data/samba/git/samba/source/st/dc/private/ldap/slapd.pid argsfile /home/data/samba/git/samba/source/st/dc/private/ldap/slapd.args sasl-realm samba.example.com #authz-regexp # uid=([^,]*),cn=samba.example.com,cn=digest-md5,cn=auth # ldap:///DC=samba,DC=example,DC=com??sub?(samAccountName=\$1) #authz-regexp # uid=([^,]*),cn=([^,]*),cn=digest-md5,cn=auth # ldap:///DC=samba,DC=example,DC=com??sub?(samAccountName=\$1) authz-regexp uid=([^,]*),cn=([^,]*),cn=digest-md5,cn=auth ldap:///cn=samba??one?(cn=\$1) authz-regexp uid=([^,]*),cn=([^,]*),cn=ntlm,cn=auth ldap:///cn=samba??one?(cn=\$1) access to dn.base="" by dn=cn=samba-admin,cn=samba manage by anonymous read by * read access to dn.subtree="cn=samba" by anonymous auth access to dn.subtree="DC=samba,DC=example,DC=com" by dn=cn=samba-admin,cn=samba manage by * none password-hash {CLEARTEXT} include /home/data/samba/git/samba/source/st/dc/private/ldap/modules.conf defaultsearchbase DC=samba,DC=example,DC=com # Generated from schema in /home/data/samba/git/samba/source/st/dc/private/ldap/schema-tmp.ldb overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad member memberof-memberof-ad memberOf memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad msDS-ObjectReference memberof-memberof-ad msDS-ObjectReferenceBL memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad serverReference memberof-memberof-ad serverReferenceBL memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad hasMasterNCs memberof-memberof-ad masteredBy memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad siteObject memberof-memberof-ad siteObjectBL memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad msCOM-UserPartitionSetLink memberof-memberof-ad msCOM-UserLink memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad bridgeheadTransportList memberof-memberof-ad bridgeheadServerListBL memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad manager memberof-memberof-ad directReports memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad msDS-hasMasterNCs memberof-memberof-ad msDs-masteredBy memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad msDS-NonMembers memberof-memberof-ad msDS-NonMembersBL memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad managedBy memberof-memberof-ad managedObjects memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad queryPolicyObject memberof-memberof-ad queryPolicyBL memberof-dangling-error 32 overlay memberof memberof-dn cn=samba-admin,cn=samba memberof-dangling error memberof-refint TRUE memberof-group-oc top memberof-member-ad nonSecurityMember memberof-memberof-ad nonSecurityMemberBL memberof-dangling-error 32 overlay refint refint_attributes memberOf member msDS-ObjectReferenceBL msDS-ObjectReference serverReferenceBL serverReference masteredBy hasMasterNCs siteObjectBL siteObject msCOM-UserLink msCOM-UserPartitionSetLink bridgeheadServerListBL bridgeheadTransportList directReports manager msDs-masteredBy msDS-hasMasterNCs msDS-NonMembersBL msDS-NonMembers managedObjects managedBy queryPolicyBL queryPolicyObject nonSecurityMemberBL nonSecurityMember database ldif suffix cn=Samba directory /home/data/samba/git/samba/source/st/dc/private/ldap/db/samba database hdb suffix CN=Schema,CN=Configuration,DC=samba,DC=example,DC=com rootdn cn=Manager,CN=Schema,CN=Configuration,DC=samba,DC=example,DC=com directory /home/data/samba/git/samba/source/st/dc/private/ldap/db/schema index objectClass eq index samAccountName eq index name eq index objectCategory eq index lDAPDisplayName eq index subClassOf eq index cn eq #syncprov is stable in OpenLDAP 2.3, and available in 2.2. #We only need this for the contextCSN attribute anyway.... overlay syncprov syncprov-checkpoint 100 10 syncprov-sessionlog 100 database hdb suffix CN=Configuration,DC=samba,DC=example,DC=com rootdn cn=Manager,CN=Configuration,DC=samba,DC=example,DC=com directory /home/data/samba/git/samba/source/st/dc/private/ldap/db/config index objectClass eq index samAccountName eq index name eq index objectSid eq index objectCategory eq index nCName eq index subClassOf eq index dnsRoot eq index nETBIOSName eq index cn eq #syncprov is stable in OpenLDAP 2.3, and available in 2.2. #We only need this for the contextCSN attribute anyway.... overlay syncprov syncprov-checkpoint 100 10 syncprov-sessionlog 100 database hdb suffix DC=samba,DC=example,DC=com rootdn cn=Manager,DC=samba,DC=example,DC=com directory /home/data/samba/git/samba/source/st/dc/private/ldap/db/user index objectClass eq index samAccountName eq index name eq index objectSid eq index objectCategory eq index member eq index uidNumber eq index gidNumber eq index nCName eq index lDAPDisplayName eq index subClassOf eq index dnsRoot eq index nETBIOSName eq index cn eq #syncprov is stable in OpenLDAP 2.3, and available in 2.2. #We only need this for the contextCSN attribute anyway.... overlay syncprov syncprov-checkpoint 100 10 syncprov-sessionlog 100