Add PPolicy overlay

This commit is contained in:
paul 2017-09-09 20:23:03 +02:00 committed by Hive
parent ada4a59467
commit c4ca5c21a0

View file

@ -44,10 +44,9 @@ include: file:///etc/ldap/schema/core.ldif
include: file:///etc/ldap/schema/cosine.ldif include: file:///etc/ldap/schema/cosine.ldif
include: file:///etc/ldap/schema/nis.ldif include: file:///etc/ldap/schema/nis.ldif
include: file:///etc/ldap/schema/inetorgperson.ldif include: file:///etc/ldap/schema/inetorgperson.ldif
# additional schemas # additional schemas
# include: file:///etc/ldap/schema/ppolicy.ldif include: file:///etc/ldap/schema/ppolicy.ldif
#
# Load module # Load module
dn: cn=module{0},cn=config dn: cn=module{0},cn=config
objectClass: olcModuleList objectClass: olcModuleList
@ -72,6 +71,14 @@ cn: module{2}
olcModulePath: /usr/lib/ldap olcModulePath: /usr/lib/ldap
olcModuleLoad: refint.la olcModuleLoad: refint.la
# Load password policy module
dn: cn=module{3},cn=config
objectClass: olcModuleList
objectClass: top
cn: module{3}
olcModulePath: /usr/lib/ldap
olcModuleLoad: ppolicy.la
# Set defaults for the backend # Set defaults for the backend
dn: olcBackend=mdb,cn=config dn: olcBackend=mdb,cn=config
objectClass: olcBackendConfig objectClass: olcBackendConfig
@ -154,3 +161,12 @@ objectClass: olcRefintConfig
objectClass: top objectClass: top
olcOverlay: {1}refint olcOverlay: {1}refint
olcRefintAttribute: memberof member manager owner olcRefintAttribute: memberof member manager owner
# ppolicy enforces password policies, such as used algorithm or length
dn: olcOverlay={2}ppolicy,olcDatabase={1}mdb,cn=config
objectClass: olcConfig
objectClass: olcOverlayConfig
objectClass: olcPPolicyConfig
objectClass: top
olcOverlay: {2}ppolicy
olcPPolicyDefault: cn=Default,ou=Policies,@SUFFIX@