modulepath      /usr/lib/ldap
moduleload back_bdb

allow bind_v2

include   /etc/ldap/schema/core.schema
include   /etc/ldap/schema/cosine.schema
include   /etc/ldap/schema/inetorgperson.schema
include   /etc/ldap/schema/misc.schema
include   /etc/ldap/schema/nis.schema
include   /etc/ldap/schema/nr.schema
include   /etc/ldap/schema/nr-mail.schema

modulepath /usr/lib/ldap
moduleload syncprov

schemacheck     on
#sizelimit 100
pidfile         /var/run/slapd/slapd.pid
argsfile        /var/run/slapd/slapd.args
replogfile	/var/lib/ldap/replog

loglevel        0

#email
database bdb
suffix "ou=email,dc=xyz"
directory "/var/lib/ldap-mail"
checkpoint 128 15

lastmod on
overlay syncprov
syncprov-checkpoint 100 10
syncprov-sessionlog 100

limits "cn=admin,ou=email,dc=xyz"
       size=unlimited
       time=unlimited

#readonly on
access to attrs=userPassword by dn.regex="cn=admin,ou=email,dc=xyz" write by anonymous read by self write
access to * by dn.regex="cn=admin,ou=email,dc=xyz" write by * read

index objectClass,uid,cn eq,pres
index entryUUID eq

updatedn "cn=admin,ou=email,dc=xyz"

#dns
replica host=1.2.3.4 suffix="ou=email,dc=xyz" bindmethod=simple
	binddn="cn=admin,ou=email,dc=xyz"
	credentials="comein"

#www
database bdb
suffix          "dc=xyz"
directory       "/var/lib/ldap-www"
checkpoint 128 15
#readonly on

access to attrs=userPassword by dn.regex="cn=admin,ou=People,dc=xyz" write by anonymous read by self write

# The admin dn has full write access
access to * by dn.regex="cn=admin,ou=People,dc=xyz" write by * read

updatedn "cn=admin,ou=People,dc=xyz"

index objectClass,uidNumber,gidNumber eq,pres
index uid,cn eq,pres,approx