aboutsummaryrefslogtreecommitdiffstats
path: root/modules/openldap
diff options
context:
space:
mode:
authorMichael Scherer <misc@mageia.org>2010-12-10 20:17:41 +0000
committerMichael Scherer <misc@mageia.org>2010-12-10 20:17:41 +0000
commit3ede46ab2aec44bf7f721c73eeaf547002faf5fc (patch)
treee476bba411dbdd0901c60db33cee9a3b720cf63e /modules/openldap
parent7d954db2185281ad07e061485716c1ff715593d2 (diff)
downloadpuppet-3ede46ab2aec44bf7f721c73eeaf547002faf5fc.tar
puppet-3ede46ab2aec44bf7f721c73eeaf547002faf5fc.tar.gz
puppet-3ede46ab2aec44bf7f721c73eeaf547002faf5fc.tar.bz2
puppet-3ede46ab2aec44bf7f721c73eeaf547002faf5fc.tar.xz
puppet-3ede46ab2aec44bf7f721c73eeaf547002faf5fc.zip
allow users to read memberof, and use overlay to keep the changes in sync
Diffstat (limited to 'modules/openldap')
-rw-r--r--modules/openldap/templates/mandriva-dit-access.conf2
-rw-r--r--modules/openldap/templates/slapd.conf3
2 files changed, 4 insertions, 1 deletions
diff --git a/modules/openldap/templates/mandriva-dit-access.conf b/modules/openldap/templates/mandriva-dit-access.conf
index 9c4faea9..001ca326 100644
--- a/modules/openldap/templates/mandriva-dit-access.conf
+++ b/modules/openldap/templates/mandriva-dit-access.conf
@@ -113,7 +113,7 @@ access to dn.subtree="ou=People,<%= dc_suffix %>"
# let the user change some of his/her attributes
access to dn.subtree="ou=People,<%= dc_suffix %>"
- attrs=carLicense,homePhone,homePostalAddress,mobile,pager,telephoneNumber,mail,preferredLanguage,sshPublicKey
+ attrs=carLicense,homePhone,homePostalAddress,mobile,pager,telephoneNumber,mail,preferredLanguage,sshPublicKey,memberOf
by self write
by users read
diff --git a/modules/openldap/templates/slapd.conf b/modules/openldap/templates/slapd.conf
index 7edab29b..fe10d95d 100644
--- a/modules/openldap/templates/slapd.conf
+++ b/modules/openldap/templates/slapd.conf
@@ -31,6 +31,7 @@ moduleload back_monitor.la
moduleload syncprov.la
moduleload ppolicy.la
#moduleload refint.la
+moduleload memberof.la
TLSCertificateFile /etc/ssl/openldap/ldap.pem
TLSCertificateKeyFile /etc/ssl/openldap/ldap.pem
@@ -72,6 +73,8 @@ index sudouser eq,sub
index entryCSN,entryUUID eq
index dhcpHWAddress,dhcpClassData eq
+overlay memberof
+
overlay syncprov
syncprov-checkpoint 100 10
syncprov-sessionlog 100