| 123456789 |
- dn: oclDatabase={1}hdb,cn=config
- replace: olcAccess
- olcAccess: to attrs=userPassword,shadowLastChange,krbPrincipalKey by dn="krb-admin,{{LDAP_ROOT}}" write by anonymous auth by self write by * none
- -
- add: olcAccess
- olcAccess: to dn.base="" by * read
- -
- add: olcAccess
- olcAccess: to * by dn="cn=krb-admin,{{LDAP_ROOT}}" write by * read
|
