# provider slapd config -- for testing # $OpenLDAP$ ## This work is part of OpenLDAP Software <http://www.openldap.org/>. ## ## Copyright 1998-2021 The OpenLDAP Foundation. ## All rights reserved. ## ## Redistribution and use in source and binary forms, with or without ## modification, are permitted only as authorized by the OpenLDAP ## Public License. ## ## A copy of this license is available in the file LICENSE in the ## top-level directory of the distribution or, alternatively, at ## <http://www.OpenLDAP.org/license.html>. include @SCHEMADIR@/core.schema include @SCHEMADIR@/cosine.schema include @SCHEMADIR@/inetorgperson.schema include @SCHEMADIR@/openldap.schema include @SCHEMADIR@/nis.schema pidfile @TESTDIR@/slapd.1.pid argsfile @TESTDIR@/slapd.1.args # global ACLs # # normal installations should protect root dse, cn=monitor, cn=subschema # access to dn.exact="" attrs=objectClass by users read access to * by * read #mod#modulepath ../servers/slapd/back-@BACKEND@/ #mod#moduleload back_@BACKEND@.la ####################################################################### # database definitions ####################################################################### database @BACKEND@ suffix "dc=example,dc=com" rootdn "cn=Manager,dc=example,dc=com" rootpw secret #null#bind on #~null~#directory @TESTDIR@/db.1.a #indexdb#index objectClass eq #indexdb#index cn,sn,uid pres,eq,sub #ndb#dbname db_1 #ndb#include @DATADIR@/ndb.conf access to attrs=userPassword by anonymous auth by * none stop access to attrs=sn val.regex="^(.*)$" by dn.exact,expand="cn=${v1},ou=Alumni Association,ou=People,dc=example,dc=com" write by * read stop access to attrs=sn val.regex="." by * read stop access to attrs=sn by dn.exact="cn=James A Jones 1,ou=Alumni Association,ou=People,dc=example,dc=com" write by * read stop # fall into global ACLs database monitor |