Created
December 2, 2012 06:46
-
-
Save anonymous/4187388 to your computer and use it in GitHub Desktop.
openldap + tls + loadbalancer + mirror mode
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| SERVER ONE | |
| ---------------------------------------------------------------------------- | |
| GLOBAL CONFIG | |
| ---------------- | |
| dn: olcDatabase={0}config,cn=config | |
| objectClass: olcDatabaseConfig | |
| olcDatabase: {0}config | |
| olcAccess: {0}to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external | |
| ,cn=auth manage by * break | |
| olcRootDN: cn=admin,cn=config | |
| olcRootPW:: REDACTED | |
| structuralObjectClass: olcDatabaseConfig | |
| entryUUID: ff969aaa-c61d-1031-880d-c3eb45d66183 | |
| creatorsName: cn=config | |
| createTimestamp: 20121118224947Z | |
| entryCSN: 20121118224947.823340Z#000000#000#000000 | |
| modifiersName: cn=config | |
| modifyTimestamp: 20121118224947Z | |
| dn: olcOverlay={0}syncprov,olcDatabase={0}config,cn=config | |
| objectClass: olcOverlayConfig | |
| objectClass: olcSyncProvConfig | |
| olcOverlay: {0}syncprov | |
| structuralObjectClass: olcSyncProvConfig | |
| entryUUID: 7119b6aa-cbb2-1031-9498-6f4c028509a1 | |
| creatorsName: cn=admin,cn=config | |
| createTimestamp: 20121126011459Z | |
| entryCSN: 20121126011459.594983Z#000000#001#000000 | |
| modifiersName: cn=admin,cn=config | |
| modifyTimestamp: 20121126011459Z | |
| DATABASE CONFIG | |
| ---------------- | |
| dn: olcDatabase={1}hdb,cn=config | |
| objectClass: olcDatabaseConfig | |
| objectClass: olcHdbConfig | |
| olcDatabase: {1}hdb | |
| olcDbDirectory: /var/lib/ldap | |
| olcAccess: {0}to attrs=userPassword,shadowLastChange by self write by anonymou | |
| s auth by dn="cn=admin,dc=nodomain" write by * none | |
| olcAccess: {1}to dn.base="" by * read | |
| olcAccess: {2}to * by self write by dn="cn=admin,dc=nodomain" write by * read | |
| olcLastMod: TRUE | |
| olcDbCheckpoint: 512 30 | |
| olcDbConfig: {0}set_cachesize 0 2097152 0 | |
| olcDbConfig: {1}set_lk_max_objects 1500 | |
| olcDbConfig: {2}set_lk_max_locks 1500 | |
| olcDbConfig: {3}set_lk_max_lockers 1500 | |
| olcDbIndex: objectClass eq | |
| olcDbIndex: uid eq | |
| olcDbIndex: entryUUID eq | |
| structuralObjectClass: olcHdbConfig | |
| entryUUID: ff9761b0-c61d-1031-8815-c3eb45d66183 | |
| creatorsName: cn=admin,cn=config | |
| createTimestamp: 20121118224947Z | |
| olcSuffix: dc=mydomain,dc=com | |
| olcRootDN: cn=me,dc=mydomain,dc=com | |
| olcRootPW:: REDACTED | |
| olcMirrorMode: TRUE | |
| olcSyncrepl: {0}rid=001 provider=ldap://ldap2.mydomain.co | |
| m bindmethod=simple bindmethod=simple binddn="cn=me,dc=mydomain,dc=com | |
| " credentials="REDACTED" starttls=yes searchbas | |
| e="dc=mydomain,dc=com" schemachecking=on type=refreshAndPersist retry="60 | |
| +" | |
| entryCSN: 20121202060112.996708Z#000000#000#000000 | |
| modifiersName: cn=admin,cn=config | |
| modifyTimestamp: 20121202060112Z | |
| dn: olcOverlay={0}syncprov,olcDatabase={1}hdb,cn=config | |
| objectClass: olcOverlayConfig | |
| objectClass: olcSyncProvConfig | |
| olcOverlay: {0}syncprov | |
| structuralObjectClass: olcSyncProvConfig | |
| entryUUID: f8cc5cae-cbb4-1031-9499-6f4c028509a1 | |
| creatorsName: cn=admin,cn=config | |
| createTimestamp: 20121126013306Z | |
| olcSpCheckpoint: 100 10 | |
| olcSpSessionlog: 100 | |
| entryCSN: 20121126020142.459440Z#000000#001#000000 | |
| modifiersName: cn=admin,cn=config | |
| modifyTimestamp: 20121126020142Z | |
| dn: olcOverlay={1}syncprov,olcDatabase={1}hdb,cn=config | |
| objectClass: olcOverlayConfig | |
| objectClass: olcSyncProvConfig | |
| olcOverlay: {1}syncprov | |
| olcSpCheckpoint: 100 10 | |
| olcSpSessionlog: 100 | |
| structuralObjectClass: olcSyncProvConfig | |
| entryUUID: 23abb1ae-cbb5-1031-949a-6f4c028509a1 | |
| creatorsName: cn=admin,cn=config | |
| createTimestamp: 20121126013418Z | |
| entryCSN: 20121126013418.179588Z#000000#001#000000 | |
| modifiersName: cn=admin,cn=config | |
| modifyTimestamp: 20121126013418Z | |
| SERVER TWO | |
| ---------------------------------------------------------------------------- | |
| GLOBAL CONFIG | |
| -------------- | |
| dn: olcDatabase={0}config,cn=config | |
| objectClass: olcDatabaseConfig | |
| olcDatabase: {0}config | |
| olcAccess: {0}to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external | |
| ,cn=auth manage by * break | |
| olcRootDN: cn=admin,cn=config | |
| olcRootPW:: REDACTED | |
| structuralObjectClass: olcDatabaseConfig | |
| entryUUID: c7d15792-cd5a-1031-8710-9d3d3449cfee | |
| creatorsName: cn=config | |
| createTimestamp: 20121128035231Z | |
| entryCSN: 20121128035231.695827Z#000000#000#000000 | |
| modifiersName: cn=config | |
| modifyTimestamp: 20121128035231Z | |
| DATABASE CONFIG | |
| ------------------- | |
| dn: olcDatabase={1}hdb,cn=config | |
| objectClass: olcDatabaseConfig | |
| objectClass: olcHdbConfig | |
| olcDatabase: {1}hdb | |
| olcDbDirectory: /var/lib/ldap | |
| olcAccess: {0}to attrs=userPassword,shadowLastChange by self write by anonymou | |
| s auth by dn="cn=admin,dc=int,dc=club,dc=mydomain,dc=com" write by * none | |
| olcAccess: {1}to dn.base="" by * read | |
| olcAccess: {2}to * by self write by dn="cn=admin,dc=int,dc=club,dc=mydomain | |
| ,dc=com" write by * read | |
| olcLastMod: TRUE | |
| olcDbCheckpoint: 512 30 | |
| olcDbConfig: {0}set_cachesize 0 2097152 0 | |
| olcDbConfig: {1}set_lk_max_objects 1500 | |
| olcDbConfig: {2}set_lk_max_locks 1500 | |
| olcDbConfig: {3}set_lk_max_lockers 1500 | |
| olcDbIndex: objectClass eq | |
| olcDbIndex: uid eq | |
| olcDbIndex: entryUUID eq | |
| structuralObjectClass: olcHdbConfig | |
| entryUUID: c7d1aa12-cd5a-1031-8718-9d3d3449cfee | |
| creatorsName: cn=admin,cn=config | |
| createTimestamp: 20121128035231Z | |
| olcSuffix: dc=mydomain,dc=com | |
| olcRootDN: cn=me,dc=mydomain,dc=com | |
| olcRootPW:: REDACTED | |
| olcMirrorMode: TRUE | |
| olcSyncrepl: {0}rid=002 provider=ldap://ldap1.mydomain.co | |
| m bindmethod=simple bindmethod=simple binddn="cn=me,dc=mydomain,dc=com | |
| " credentials="REDACTED" starttls=yes searchbas | |
| e="dc=mydomain,dc=com" schemachecking=on type=refreshAndPersist retry="60 | |
| +" | |
| entryCSN: 20121202055936.867030Z#000000#000#000000 | |
| modifiersName: cn=admin,cn=config | |
| modifyTimestamp: 20121202055936Z | |
| dn: olcOverlay={0}syncprov,olcDatabase={1}hdb,cn=config | |
| objectClass: olcOverlayConfig | |
| objectClass: olcSyncProvConfig | |
| olcOverlay: {0}syncprov | |
| olcSpCheckpoint: 100 10 | |
| olcSpSessionlog: 100 | |
| structuralObjectClass: olcSyncProvConfig | |
| entryUUID: c0cca3c6-d05b-1031-8d6c-0b4705e4171e | |
| creatorsName: cn=admin,cn=config | |
| createTimestamp: 20121201233702Z | |
| entryCSN: 20121201233702.906014Z#000000#002#000000 | |
| modifiersName: cn=admin,cn=config | |
| modifyTimestamp: 20121201233702Z |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment