dn: {{ ldap_database }}
changetype: modify
replace: olcsuffix
olcsuffix: {{ ldap_suffix }}
-
replace: olcrootdn
olcrootdn: {{ ldap_admin_dn }}
-
replace: olcrootpw
olcrootpw: {{ ldap_admin_password }}

dn: olcDatabase={0}config,cn=config
changetype: modify
replace: olcAccess
olcAccess: to * by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" manage by dn.base={{ ldap_admin_dn }}  manage by * none