aboutsummaryrefslogtreecommitdiffstats
path: root/modules/openldap/templates/slapd.conf
diff options
context:
space:
mode:
Diffstat (limited to 'modules/openldap/templates/slapd.conf')
-rw-r--r--modules/openldap/templates/slapd.conf4
1 files changed, 4 insertions, 0 deletions
diff --git a/modules/openldap/templates/slapd.conf b/modules/openldap/templates/slapd.conf
index ac67b714..6ae637c2 100644
--- a/modules/openldap/templates/slapd.conf
+++ b/modules/openldap/templates/slapd.conf
@@ -37,6 +37,7 @@ moduleload ppolicy.la
moduleload memberof.la
moduleload unique.la
moduleload dynlist.la
+moduleload constraint.la
TLSCertificateFile /etc/ssl/openldap/ldap.<%= domain %>.pem
TLSCertificateKeyFile /etc/ssl/openldap/ldap.<%= domain %>.pem
@@ -101,6 +102,9 @@ unique_uri ldap:///?mail?sub?
overlay dynlist
dynlist-attrset groupOfURLs memberURL member
+overlay constraint
+constraint_attribute sshPublicKey regex ^ssh-[rd]sa [[:graph:]]+ [[:graph:]]+$
+
# uncomment if you want to automatically update group
# memberships when an user is removed from the tree
# Also uncomment the refint.la moduleload above
generated by cgit v1.2.1 (git 2.21.0) at 2024-06-26 11:02:14 +0000