slapd: rajout overlay unique, memberof et auditlog

2020-02-12 23:51:45 +01:00
parent 8d919fb56a
commit 460f23ff04
2 changed files with 55 additions and 0 deletions
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -24,3 +24,48 @@ ldap_auth:
 ldap_cache_size: 3000
 ldap_idlcache_size: 6000
 ldap_checkpoint: 1024 30
+ldap_entries:
+  - dn: cn=module,cn=config
+    objectClass: olcModuleList
+    attributes:
+      cn: module
+      olcModulePath: /usr/lib64/openldap/
+      olcModuleLoad: auditlog.la
+
+  - dn: olcOverlay={0}auditlog,olcDatabase={2}hdb,cn=config
+    objectClass: 
+      - olcOverlayConfig
+      - olcAuditLogConfig
+    attributes:
+      olcOverlay: "{0}auditlog"
+      olcAuditlogFile: /var/log/ldapaudit.log
+
+  - dn: cn=module,cn=config
+    objectClass: olcModuleList
+    attributes:
+      cn: module
+      olcModulePath: /usr/lib64/openldap/
+      olcModuleLoad: memberof.la
+
+  - dn: olcOverlay={1}memberof,olcDatabase={2}hdb,cn=config
+    objectClass:
+      - olcConfig
+      - olcOverlayConfig
+      - olcMemberOf
+    attributes:
+      olcOverlay: "{1}memberof"
+
+  - dn: cn=module,cn=config
+    objectClass: olcModuleList
+    attributes:
+      cn: module
+      olcModulePath: /usr/lib64/openldap/
+      olcModuleLoad: unique.la
+
+  - dn: olcOverlay={2}unique,olcdatabase={2}hdb,cn=config
+    objectClass: 
+      - olcOverlayConfig
+      - olcUniqueConfig
+    attributes:
+      olcOverlay: "{2}unique"
+      olcUniqueURI: ldap:///?uid?sub?
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -189,3 +189,13 @@
  template:
    src: ldap_aliases.sh
    dest: /etc/profile.d/
+
+- name: add some entries
+  ldap_entry:
+    dn: "{{ item.dn }}"
+    objectClass: "{{ item.objectClass }}"
+    attributes: "{{ item.attributes }}"
+    state: present
+  loop: "{{ ldap_entries }}"
+  when: ldap_entries is defined
+  ignore_errors: true