--On Wednesday, September 16, 2020 9:05 PM -0700 Christopher Paul chris.paul@rexconsulting.net wrote:
Salutations OpenLDAP-Technical,
I am thinking of rootDN and how I'm not a big fan of it. You don't need rootDN to configure OpenLDAP (assuming you first load OLC with slapadd). You don't need it to configure OLC if you've set up access to it for admin accounts. It ends up being one shared password that rules everything.
The rootdn does not require a password, and most deployments don't set one, so your understanding here is deeply flawed.
Rootdn is required for some overlays and databases for internal operations. This still doesn't require a root password to be set.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com