slapd: rajout acl sur cn=monitor

tasks/main.yml

@@ -32,9 +32,9 @@
     olcRootDN: "{{ ldap_admin_dn }}"
     olcRootPW: "{{ ldap_admin_password }}"
 
-- name: reconfigure slapd - access to cn=config
+- name: reconfigure slapd - access to cn=config and cn=monitor
   ldap_attr:
-    dn: olcDatabase={0}config,cn=config
+    dn: "{{ item }}"
     name: olcAccess
     values:
       >-
@@ -42,6 +42,9 @@
       by dn.base={{ ldap_admin_dn }}  manage
       by * none
     state: exact
+  loop:
+  - olcDatabase={0}config,cn=config
+  - olcDatabase={1}monitor,cn=config
 
 - name: load additionnal schema
   include_tasks: import_ldap_schema.yml
@@ -93,7 +96,6 @@
       with_items: "{{ ldif_list.files }}"
       ignore_errors: true
   when: ldap_ldif_files is defined
-  tags: wip
 
 - name: configure replication provider
   include_tasks: replication_provider.yml