no-secrets-athq-ansible/roles/usermanagement/templates/slapd.conf

modulepath /usr/lib/ldap/
moduleload back_bdb.la

pidfile         /var/run/slapd.pid
argsfile        /var/run/slapd.args

include /etc/ldap/schema/core.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/inetorgperson.schema
include /etc/ldap/schema/nis.schema

database    bdb
suffix      "{{ ldap_suffix }}"
rootdn      "{{ ldap_bind_dn }}"
rootpw      {SSHA}HISTORY_PURGED_SECRET

TLSCACertificateFile  /etc/ssl/certs/ca-certificates.crt
TLSCertificateFile    /etc/letsencrypt/live/ldap.atlantishq.de/cert.pem
TLSCertificateKeyFile /etc/letsencrypt/live/ldap.atlantishq.de/privkey.pem
TLSVerifyClient try


logfile /var/log/slapd.log
loglevel -1

directory /var/lib/ldap/
cachesize 2000