######################### /etc/ldap/slapd.conf #########################
# http://homex.subnet.at/~max/ldap/
# 
# Basic slapd.conf

include         /etc/ldap/schema/core.schema
include         /etc/ldap/schema/cosine.schema
include         /etc/ldap/schema/nis.schema
include         /etc/ldap/schema/inetorgperson.schema
include         /etc/ldap/schema/misc.schema

schemacheck     on
pidfile         /home_local/slapd/slapd.pid
argsfile        /home_local/slapd/slapd.args
password-hash   {CRYPT}
replogfile      /var/lib/ldap/replog
loglevel        256
database        ldbm

suffix          "dc=subnet,dc=at"
# use "/usr/sbin/slappasswd -h {CRYPT}" to create a rootpw-string below
# (note: if you use the tcsh shell, you will have to use single quotes
#        to surround the {CRYPT}, i.e.: /usr/sbin/slappasswd -h '{CRYPT}')
rootpw          {CRYPT}xxxxxxxxxx
directory       "/var/lib/ldap"
index objectClass eq
lastmod         on

access to attribute=userPassword
        by dn="cn=manager,dc=subnet,dc=at" write
        by anonymous auth
        by * none
                                                                                                   
access to *
        by dn="cn=manager,dc=subnet,dc=at" write
        by dn="cn=nss,dc=subnet,dc=at" read
        by * auth
#######################################################################