Le 31/03/2020 à 17:47, Michael Ströder a écrit : > On 3/31/20 3:08 PM, Clément OUDOT wrote: >> We created a config.ldif template, then import it in a task: >> >> - name: OpenLDAP Config Template >> template: >> src: config0.j2 >> dest: /tmp/config0.ldif >> >> - name: Import base config ldif >> shell: /usr/local/openldap/sbin/slapadd -n0 -F >> /usr/local/openldap/etc/openldap/slapd.d -l /tmp/config0.ldif >> when: find_config.matched == 0 > But to modify the content of an existing cn=config you would need to > stop slapd, remove files in cn=config directory, and re-add all content > from /tmp/config0.ldif). Which completely defeats the idea of back-config...
Agree. In my project, ansible was used to deploy and initialize the directory, not to maintain the configuration after that. -- Clément Oudot | Identity Solutions Manager clement.ou...@worteks.com Worteks | https://www.worteks.com _______________________________________________ ltb-users mailing list ltb-users@lists.ltb-project.org https://lists.ltb-project.org/cgi-bin/mailman/listinfo/ltb-users
