committinh old changes

defaults/main.yml

@@ -12,13 +12,12 @@ ldap_replication_provider: false
 ldap_schemas:
  - cosine
 ldap_have_ssl: true
-ldap_ssl_dir: "{{ ldap_config_dir }}/certs/"
+ldap_ssl_dir: /etc/openldap/certs/
 ldap_ssl_cert_path: "{{ ldap_ssl_dir }}/cert.pem"
 ldap_ssl_key_path: "{{ ldap_ssl_dir }}/key.pem"
 ldap_ssl_cacert_path: "{{ ldap_ssl_dir }}/cert.pem"
 ldap_admin_dn: "cn=manager,{{ldap_suffix}}"
 ldap_admin_password: "CHANGEME"
-ldap_backup_dir: /srv/backups/ldap
 ldap_auth:
   bind_dn: "{{ ldap_admin_dn }}"
   bind_pw: "{{ ldap_admin_password }}"
@@ -33,7 +32,7 @@ ldap_entries:
       olcModulePath: /usr/lib64/openldap/
       olcModuleLoad: auditlog.la
 
-  - dn: "olcOverlay={0}auditlog,{{ ldap_database }},cn=config"
+  - dn: olcOverlay={0}auditlog,olcDatabase={2}hdb,cn=config
     objectClass: 
       - olcOverlayConfig
       - olcAuditLogConfig
@@ -48,7 +47,7 @@ ldap_entries:
       olcModulePath: /usr/lib64/openldap/
       olcModuleLoad: memberof.la
 
-  - dn: "olcOverlay={1}memberof,{{ ldap_database }},cn=config"
+  - dn: olcOverlay={1}memberof,olcDatabase={2}hdb,cn=config
     objectClass:
       - olcConfig
       - olcOverlayConfig
@@ -63,7 +62,7 @@ ldap_entries:
       olcModulePath: /usr/lib64/openldap/
       olcModuleLoad: unique.la
 
-  - dn: "olcOverlay={2}unique,{{ ldap_database }},cn=config"
+  - dn: olcOverlay={2}unique,olcdatabase={2}hdb,cn=config
     objectClass: 
       - olcOverlayConfig
       - olcUniqueConfig