feat: keycloak & ldap

roles/usermanagement/templates/slapd.conf

@@ -0,0 +1,27 @@
+modulepath /usr/lib/ldap/
+moduleload back_bdb.la
+
+pidfile         /var/run/slapd.pid
+argsfile        /var/run/slapd.args
+
+include /etc/ldap/schema/core.schema
+include /etc/ldap/schema/cosine.schema
+include /etc/ldap/schema/inetorgperson.schema
+include /etc/ldap/schema/nis.schema
+
+database    bdb
+suffix      "{{ ldap_suffix }}"
+rootdn      "{{ ldap_bind_dn }}"
+rootpw      {SSHA}HISTORY_PURGED_SECRET
+
+TLSCACertificateFile  /etc/ssl/certs/ca-certificates.crt
+TLSCertificateFile    /etc/letsencrypt/live/ldap.atlantishq.de/cert.pem
+TLSCertificateKeyFile /etc/letsencrypt/live/ldap.atlantishq.de/privkey.pem
+TLSVerifyClient try
+
+
+logfile /var/log/slapd.log
+loglevel -1
+
+directory /var/lib/ldap/
+cachesize 2000