summaryrefslogtreecommitdiffstats
path: root/roles/LDAP-provider/tasks/main.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/LDAP-provider/tasks/main.yml')
-rw-r--r--roles/LDAP-provider/tasks/main.yml16
1 files changed, 16 insertions, 0 deletions
diff --git a/roles/LDAP-provider/tasks/main.yml b/roles/LDAP-provider/tasks/main.yml
index fc9ed62..48cc8d2 100644
--- a/roles/LDAP-provider/tasks/main.yml
+++ b/roles/LDAP-provider/tasks/main.yml
@@ -4,4 +4,20 @@
target=etc/ldap/syncprov.ldif
local=file
+- name: Enable the EXTERNAL SASL mechanism
+ lineinfile: dest=/usr/lib/sasl2/slapd.conf
+ regexp='^mech_list'':'
+ line=mech_list':'' EXTERNAL'
+ owner=root group=root
+ mode=0644
+
+- name: Copy the SyncRepls's client certificates
+ assemble: src=certs/ldap
+ remote_src=no
+ dest=/etc/ldap/ssl/clients.pem
+ owner=root group=root
+ mode=0644
+ tags:
+ - genkey
+
# TODO: authz constraint
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-28 22:44:33 +0000