# $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.8.8.7 2001/09/27 20:00:31 kurt Exp $ # # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. # include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema include /etc/openldap/schema/redhat/rfc822-MailMember.schema include /etc/openldap/schema/redhat/autofs.schema include /etc/openldap/schema/redhat/kerberosobject.schema include /etc/openldap/schema/kandalaya.schema schemacheck off ####################################################################### # ldbm database definitions ####################################################################### database ldbm suffix "dc=hostname,dc=misterhost,dc=com" rootdn "cn=Manager,dc=hostname,dc=misterhost,dc=com" directory /var/lib/ldap lastmod on index objectClass,uid,uidNumber,gidNumber,memberUid eq index cn,mail,surname,givenname eq,subinitial # # ACL's for VishwaKarma # access to dn="cn=manager,dc=hostname,dc=misterhost,dc=com" attr=entry,notifydomainaddemail,notifydomainaddlist,notifydomaindeleteemail,notifydomaindeletelist,notifydomainmodifyemail,notifydomainownerchangeemail,notifyresellerchangeemail,notifyresellercreatedomain,notifyresellerdeletedomain,notifyresellermodifydomain,notifyuserchangedelivery,notifyuserchangepassword,notifyuserchangeemail,objectclass,cn,mail by users read by dn="cn=Manager,dc=hostname,dc=misterhost,dc=com" write by * none access to dn="^reseller=(.*),dc=hostname,dc=misterhost,dc=com" attr=entry,notifydomainaddemail,notifydomainaddlist,notifydomaindeleteemail,notifydomaindeletelist,notifydomainmodifyemail,notifydomainownerchangeemail,notifyuserchangedelivery,notifyuserchangepassword,notifyuserchangeemail,objectclass,cn,mail by self write by dn=".*,reseller=$1,dc=hostname,dc=misterhost,dc=com" read by dn=".*,type=HostMap,dc=hostname,dc=misterhost,dc=com" read by dn="cn=Manager,dc=hostname,dc=misterhost,dc=com" write by * none access to dn="^hostname=(.*),reseller=(.*),dc=hostname,dc=misterhost,dc=com" attr=entry,notifyuserchangedelivery,notifyuserchangepassword,notifyuserchangeemail,objectclass,cn,mail by self write by dn=".*,hostname=$1,reseller=$2,dc=hostname,dc=misterhost,dc=com" read by dn="hostName=$1,type=HostMap,dc=hostname,dc=misterhost,dc=com" read by dn="reseller=$2,dc=hostname,dc=misterhost,dc=com" write by dn="cn=Manager,dc=hostname,dc=misterhost,dc=com" write by * none access to dn="^reseller=(.*),dc=hostname,dc=misterhost,dc=com" by dn="reseller=$1,dc=hostname,dc=misterhost,dc=com" write by anonymous auth by * none access to dn="^hostName=.*,reseller=(.*),dc=hostname,dc=misterhost,dc=com" by dn="reseller=$1,dc=hostname,dc=misterhost,dc=com" write by anonymous auth by * none access to dn="^hostname=.*,type=hostMap,dc=hostname,dc=misterhost,dc=com" by * read access to dn="type=hostMap,dc=hostname,dc=misterhost,dc=com" by dn="reseller=.*,dc=hostname,dc=misterhost,dc=com" write by anonymous auth by * none access to dn="^user=.*,hostname=(.*),reseller=(.*),dc=hostname,dc=misterhost,dc=com" by self write by dn="hostname=$1,reseller=$2,dc=hostname,dc=misterhost,dc=com" write by dn="reseller=$2,dc=hostname,dc=misterhost,dc=com" write by anonymous auth by * none access to dn=".*" by dn="cn=manager,dc=hostname,dc=misterhost,dc=com" write by anonymous auth by * none