--On Wednesday, June 1, 2022 11:43 PM +0000 "Real Villafan, Elizabeth (US
392K)" <[email protected]> wrote:
Ok, so
load the module, does it matter where in the slapd.conf file?
Is the format simply:
database mdb
overlay ppolicy
ppolicy_default "cn=default,ou=policies,dc=example,dc=com"
OR is it something like,
objectClass: olcModuleList
cn: module{0}
olcModuleLoad: ppolicy.la
The above are two different things.
Module load is used to make modules available for use (but doesn't actually
use them) if they were built dynamically.
database mdb
...
overlay ppolicy
...
Is explicitly tying the ppolicy overlay to the mdb database. A slapd
configuration can have multiple databases, each of which uses different
sets of overlays, and some overlays can be configured globally.
THEN load it with ldapadd ?
# ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/openldap/ppmodule.ldif
PPM is an external password checking module that can be combined with
ppolicy, but that's separate from configuring ppolicy itself.
--Quanah
