slapd:

- adaptat to centos8 (wip)
 - paraméterize cache and checkpoint setting

defaults/main.yml

@@ -2,19 +2,25 @@
 # defaults file for /etc/ansible/roles/slapd
 ldap_domain: example
 ldap_domain_ext: fr
+ldap_server: ldap://localhost
 ldap_secret_file: /root/.ldap.secret
 ldap_provider_uri: "{{ ansible_fqdn }}"
-ldap_suffix: "{{ ldap_domain }},{{ ldap_domain_ext }}"
+ldap_suffix: "dc={{ ldap_domain }},dc={{ ldap_domain_ext }}"
 import_data: false
+ldap_replication_consumer: false
+ldap_replication_provider: false
 ldap_schemas:
  - cosine
 ldap_have_ssl: true
-ldap_ssl_dir: /etc/openldap/certs
-ldap_ssl_cert_path: "{{ ldap_ssl_dir }}/{{ ansible_fqdn }}_fullchain.pem"
-ldap_ssl_key_path: "{{ ldap_ssl_dir }}/{{ ansible_fqdn }}_privkey.pem"
-ldap_ssl_cacert_path: "{{ ldap_ssl_dir }}/{{ ansible_fqdn }}_fullchain.pem"
+ldap_ssl_dir: /etc/openldap/certs/
+ldap_ssl_cert_path: "{{ ldap_ssl_dir }}/cert.pem"
+ldap_ssl_key_path: "{{ ldap_ssl_dir }}/key.pem"
+ldap_ssl_cacert_path: "{{ ldap_ssl_dir }}/cert.pem"
 ldap_admin_dn: "cn=manager,{{ldap_suffix}}"
 ldap_admin_password: "CHANGEME"
 ldap_auth:
   bind_dn: "{{ ldap_admin_dn }}"
   bind_pw: "{{ ldap_admin_password }}"
+ldap_cache_size: 3000
+ldap_idlcache_size: 6000
+ldap_checkpoint: 1024 30