add memberof overlay,

fix init order for memberof overlay
2024-03-28 23:22:25 +00:00
parent e3b173b280
commit 6dfca1aeeb
4 changed files with 21 additions and 8 deletions
--- a/pass.template.ldif
+++ b/pass.template.ldif
@@ -1,9 +1,10 @@
-# load pw-sha2 module
+# load modules: pw-sha2, ppolicy, memberof
 dn: cn=module{0},cn=config
 changetype: modify
 add: olcModuleLoad
 olcModuleLoad: pw-sha2.la
 olcModuleLoad: ppolicy.la
+olcModuleLoad: memberof.la

 # set default password hash to SSHA512
 dn: olcDatabase={-1}frontend,cn=config
@@ -21,3 +22,15 @@ olcPPolicyDefault: cn=password,ou=policies,$BASE_DN
 olcPPolicyHashCleartext: TRUE
 olcPPolicyUseLockout: FALSE
 olcPPolicyForwardUpdates: FALSE
+
+# add memberof policy
+dn: olcOverlay=memberof,olcDatabase={1}mdb,cn=config
+changetype: add
+objectClass: olcOverlayConfig
+objectClass: olcMemberOf
+olcOverlay: memberof
+olcMemberOfDangling: ignore
+olcMemberOfRefInt: TRUE
+olcMemberOfGroupOC: groupOfNames
+olcMemberOfMemberAD: member
+olcMemberOfMemberOfAD: memberOf