1 files changed, 14 insertions, 1 deletions

diff --git a/modules/openldap/templates/slapd.conf b/modules/openldap/templates/slapd.conf
index 9451d6cd..d82fe088 100644
--- a/modules/openldap/templates/slapd.conf
+++ b/modules/openldap/templates/slapd.conf
@@ -30,6 +30,11 @@ pidfile		/var/run/ldap/slapd.pid
 argsfile	/var/run/ldap/slapd.args
 
 modulepath	<%= lib_dir %>/openldap
+<% if @hostname == 'duvel' then %>
+moduleload	back_bdb.la
+<% else %>
+moduleload	back_mdb.la
+<% end %>
 moduleload	back_monitor.la
 moduleload	syncprov.la
 moduleload	ppolicy.la
@@ -59,17 +64,25 @@ access to dn.subtree="cn=Monitor"
 	by group.exact="cn=LDAP Admins,ou=System Groups,<%= dc_suffix %>" read
 	by * none
 
+<% if @hostname == 'duvel' then %>
 database	bdb
+<% else %>
+database	mdb
+# mdb defaults to 10MB max DB, so we need to hardcode some better value :(
+maxsize         500000000
+<% end %>
 suffix		"<%= dc_suffix %>"
 directory	/var/lib/ldap
 rootdn		"cn=manager,<%= dc_suffix %>"
 
 checkpoint 256 5
+<% if @hostname == 'duvel' then %>
 # 32Mbytes, can hold about 10k posixAccount entries
 dbconfig set_cachesize 0 33554432 1
 dbconfig set_lg_bsize 2097152
 cachesize 1000
 idlcachesize 3000
+<% end %>
 
 index	objectClass					eq
 index	uidNumber,gidNumber,memberuid,member,owner  	eq
@@ -104,7 +117,7 @@ dynlist-attrset groupOfURLs memberURL member
 
 
 overlay constraint
-constraint_attribute sshPublicKey regex "^ssh-(rsa|dss) [[:graph:]]+ [[:graph:]]+$"
+constraint_attribute sshPublicKey regex "^ssh-(rsa|dss|ed25519) [[:graph:]]+ [[:graph:]]+$"
 
 # uncomment if you want to automatically update group
 # memberships when an user is removed from the tree