jonathan/infra
1
0
Fork 0
Code Actions Activity
Files
37017b9f8a464212e7d03061f06dc77b9ee1fd93
infra/ansible/roles/openldap_server/tasks/tls.yaml
Jonathan DeMasi 7a377c09e0 Init new ldap server role
2026-01-23 16:26:39 -07:00

21 lines
484 B
YAML
Raw Blame History

- name: Configure TLS cert
community.general.ldap_attrs:
dn: cn=config
state: present
attributes:
olcTLSCertificateFile: "{{ ldap_cert_path }}"
olcTLSCertificateKeyFile: "{{ ldap_key_path }}"
args:
server_uri: ldapi:///
sasl_mech: EXTERNAL
- name: Require TLS
community.general.ldap_attrs:
dn: olcDatabase={2}mdb,cn=config
state: present
attributes:
olcSecurity: tls=1
args:
server_uri: ldapi:///
sasl_mech: EXTERNAL
View Git Blame Copy Permalink